yara-rules
There are 9 repositories under yara-rules topic.
InQuest / awesome-yara
A curated list of awesome YARA rules, tools, and people.
- Language:Python 3673
Neo23x0 / signature-base
YARA signature and IOC database for my scanners and tools
Language:YARA 2781sroberts / awesome-iocs
A collection of sources of indicators of compromise.
Language:Shell 914- reversinglabs-yara-rules
reversinglabs / reversinglabs-yara-rules
ReversingLabs YARA Rules
Language:YARA 856 - Language:PHP 716
- ThreatHunting-Keywords
mthcht / ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
Language:PowerShell 613 c3rb3ru5d3d53c / binlex
A Binary Genetic Traits Lexer Framework
Language:Rust 516roadwy / DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
Language:YARA 470A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
Language:Python 385bartblaze / Yara-rules
Collection of private Yara rules.
Language:YARA 372volexity / threat-intel
Signatures and IoCs from public Volexity blog posts.
Language:Python 359michelcrypt4d4mus / pdfalyzer
Analyze PDFs with colors (and YARA)
Language:YARA 335sapphirex00 / Threat-Hunting
Personal compilation of APT malware from whitepaper releases, documents and own research
- Language:Python 239
PUNCH-Cyber / YaraGuardian
Django web interface for managing Yara rules
Language:Python 195- Language:Python 192
- ThreatHunting-Keywords-yara-rules
yara detection rules for hunting with the threathunting-keywords project
Language:YARA 151 Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.
Language:Python 141Xumeiquer / yara-forensics
Set of Yara rules for finding files using magics headers
Language:YARA 141- Language:YARA 122
- Language:Shell 109
Hestat / lw-yara
Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Language:YARA 103Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Language:JavaScript 103blackberry / threat-research-and-intelligence
BlackBerry Threat Research & Intelligence
Language:Jupyter Notebook 99- Language:YARA 97
- Judge-Jury-and-Executable
AdamWhiteHat / Judge-Jury-and-Executable
A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Language:C# 82 kweatherman / yara4ida
Unofficial YARA IDA Pro plugin, along with an unparalleled crypto/hash/compression rule set based on Luigi Auriemma's signsrch signatures.
Language:YARA 82CIRCL / factual-rules-generator
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Language:Python 76ThreatLabz / iocs
This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
Language:YARA 73t4d / PhishingKit-Yara-Search
Yara scan Phishing Kit's Zip archive(s)
Language:Python 61- Language:YARA 59
iomoath / yara-scanner
YaraScanner is a file pattern-matching tool based on YARA rules.
Language:Python 59- morpheus_IOC_scanner
phantom0004 / morpheus_IOC_scanner
Enter Morpheus, your advanced IOC detection tool. Powered by expert YARA rules and integrated with VirusTotal, it scans and identifies Indicators of Compromise with unmatched precision across diverse formats, redefining cybersecurity defense.
Language:Python 54 lprat / static_file_analysis
Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Language:YARA 50thewhiteninja / yarasploit
YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.
Language:YARA 44
