yara-forensics

There are 2 repositories under yara-forensics topic.

• APKiD

  rednaga / APKiD

  Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

  androidantivirusmachine-learningmalware-detectionmalware-analysismalware-researchyarayara-forensicspackersandroid-protectionandroid-protect-appsraspappshielding
  Language:YARA 1909

• Xumeiquer / yara-forensics

  Set of Yara rules for finding files using magics headers

  dump-filesforensicsmagic-headersyarayara-forensicsyara-rules
  Language:YARA 134

• michelcrypt4d4mus / yaralyzer

  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.

  malwaremalware-analysismalware-detectionreverse-engineeringvisualizationyarayara-forensicsyara-scannerblueteamdfirhacking-toolnetsecnetsec-toolsyara-formatyara-integratedyara-rules
  Language:Python 99
• ThreatHunting-Keywords-yara-rules

  mthcht / ThreatHunting-Keywords-yara-rules

  yara detection rules for hunting with the threathunting-keywords project

  awesome-listblueteamdetection-engineeringdfirforensics-toolshacktoolshuntingincident-responseoffensive-securitythreat-huntingthreat-intelligenceyara-forensicsyara-rulesyara-scanneryara-signatures
  Language:YARA 51

• stellarbear / YaraSharp

  C# wrapper around the Yara pattern matching library

  yarayara-scannerwrapper-apiwrapper-libraryyara-forensicswrapperlibyaraasync-scanningnetcsharp
  Language:C 32

• YARA-Silly-Silly / yarasilly2

  Automatic generation of YARA rules from sample files.

  hacktoberfestjinja2python3yarayara-forensicsyara-rules
  Language:Python 26
• Yara-Repo

  Fadavvi / Yara-Repo

  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-systems.com/

  yarayara-rulesyara-signaturesyara-forensicsblueteamblueteamingthreat-huntingthreat-intelligencethreatintel
  Language:Shell 25

• rpgeeganage / audit-node-modules-with-yara

  Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles

  malware-analysisstatic-analysisyara-rulesyara-scanneryara-forensicsnodejsnode-jsnode-modulenodesecuritynode-securitynode-security-program
  Language:YARA 19

• CIRCL / factual-rules

  Factual rules are YARA rules to find legitimate software on raw disk acquisition.

  dfirdfir-automationyara-rulesyara-forensicsyara-signatures
  Language:YARA 9

• paulveillard / cybersecurity-YARA

  An ongoing collection of awesome tools and frameworks, best security software practices, libraries, learning tutorials, frameworks, academic and practical resources about YARA in cybersecurity

  yarayara-scanneryara-signaturesyara-manageryara-forensics
  7

• albertzsigovits / malware-yara

  YARA rules for malware detection

  malwaremalware-analysismalware-detectionmalware-protectionmalware-researchmalware-scannermalwareanalysisyarayara-forensicsyara-rulesyara-rulesetyara-signaturesmalware-yara
  Language:YARA 6

• jaegeral / yara-forensics-rules

  A collection of yara rules that can be used for forensics (non malware) cases but also some other rules

  yarayara-rulesyara-forensics
  Language:YARA 5

• kittymagician / Aegis

  Aegis - Flask web interface for scanning files with YARA

  python3flask-applicationyarayara-forensicsyara-scanner
  Language:HTML 4

• dyussekeyev / thamara

  THAMARA - Threat Hunting with AMSI and YARA

  amsicybercyber-securitycyberseccybersecurityinformation-securityinformationsecurityinfosecinfosectoolsmalwaremalware-detectionmalware-protectionthreat-detectionthreat-huntingthreathuntingyarayara-forensicsyara-scanner
  Language:C 1

• threatcode / YARA

  The pattern matching swiss knife

  yarayara-forensicsyara-formatyara-rulesyara-scanner
  Language:C 1

• 0x4F776C / Yara

  やらないか?

  yara-rulesyara-forensicsanalysis
  Language:Python

• D3vKn1ght / yara-dll

  Dll for yara

  yarayara-forensics
  Language:C