yara-scanner

There are 4 repositories under yara-scanner topic.

• InQuest / awesome-yara

  A curated list of awesome YARA rules, tools, and people.

  awesomeawesome-listawesome-yaraiocmalware-analysismalware-detectionmalware-researchmalware-rulesthreat-huntingyarayara-manageryara-rulesyara-scanneryara-signatures
  3975

• deepfence / YaraHunter

  🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍

  devsecopsdevsecops-best-practicesdevsecops-pipelineiocmalwarethreat-huntingyarayara-scannerci-cdhacktoberfest
  Language:Go 1327

• deadbits / vigil-llm

  ⚡ Vigil ⚡ Detect prompt injections, jailbreaks, and other potentially risky Large Language Model (LLM) inputs

  llm-securityprompt-injectionadversarial-attacksadversarial-machine-learninglarge-language-modelsllmopsyara-scannersecurity-tools
  Language:Python 371

• JPCERTCC / YAMA

  Yet Another Memory Analyzer for malware detection

  malware-detectionmemory-scanninganti-malwareyarayara-scanner
  Language:C++ 180

• spyre-project / spyre

  simple YARA-based IOC scanner

  yaraiocsecurityincident-responsehacktoberfestwindowslinuxmacosmacosxgolanggoyara-scannerscanner
  Language:Go 168
• ThreatHunting-Keywords-yara-rules

  mthcht / ThreatHunting-Keywords-yara-rules

  yara detection rules for hunting with the threathunting-keywords project

  awesome-listblueteamdetection-engineeringdfirforensics-toolshacktoolshuntingincident-responseoffensive-securitythreat-huntingthreat-intelligenceyara-forensicsyara-rulesyara-scanneryara-signatures
  Language:YARA 147

• michelcrypt4d4mus / yaralyzer

  Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.

  malwaremalware-analysismalware-detectionreverse-engineeringvisualizationyarayara-forensicsyara-scannerblueteamdfirhacking-toolnetsecnetsec-toolsyara-formatyara-integratedyara-rules
  Language:Python 137
• Judge-Jury-and-Executable

  AdamWhiteHat / Judge-Jury-and-Executable

  A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.

  securitythreat-huntingantivirusscannerquery-languagecsharpforensics-level-scanningforensicsmftthreat-monitorforensic-analysisforensics-investigationsyarayara-scanneryara-rules
  Language:C# 82

• kweatherman / yara4ida

  Unofficial YARA IDA Pro plugin, along with an unparalleled crypto/hash/compression rule set based on Luigi Auriemma's signsrch signatures.

  cryptographyida-pluginreverse-engineeringyara-rulesyara-scanner
  Language:YARA 75

• fkie-cad / yapscan

  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.

  golangmemorysecurityyarayara-scanner
  Language:Go 61

• t4d / PhishingKit-Yara-Search

  Yara scan Phishing Kit's Zip archive(s)

  yarayara-scanneryara-rulesphishingphishing-detectionphishing-kitphishing-sites
  Language:Python 57

• iomoath / yara-scanner

  YaraScanner is a file pattern-matching tool based on YARA rules.

  yara-scanneryara-rulesthreat-huntingpython3
  Language:Python 56

• vthib / boreal

  Safe and performant YARA rules evaluator in Rust

  pattern-matchingrustyarayara-parseryara-scanner
  Language:Rust 46

• codeyourweb / irma

  enpoint detection / live analysis & sandbox host / signatures quality test

  endpoint-detection-responselive-forensicthreat-huntingyara-scanner
  Language:Go 44

• stellarbear / YaraSharp

  C# wrapper around the Yara pattern matching library

  yarayara-scannerwrapper-apiwrapper-libraryyara-forensicswrapperlibyaraasync-scanningnetcsharp
  Language:C 42

• 0xN3utr0n / Kanis

  Advanced threat detection solution for Linux.

  antiviruscontainer-securitycontainersdockerendpoint-securityidslinuxmalwarerootkitthreat-detectionyarayara-scanner
  Language:Go 36

• NumLocK15 / YaraStation

  Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centralized management solution that facilitates result investigation and easier scanning capabilities.

  yara-rulesyara-scannerloki
  Language:JavaScript 36

• abhinavbom / clara

  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets

  malware-analyzermalware-analysiss3-buckets3-storageclamavyarayara-scannermalware-detection
  Language:Python 31

• nogoodconfig / pyarascanner

  A simple many-rules to many-files YARA scanner for incident response or malware zoos.

  yarayara-scannerincident-responsedfirpython
  Language:Python 26

• pracsec / YaraTools

  Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.

  forensics-toolsyarayara-rulesyara-scanner
  Language:PowerShell 23

• cloudina / hawk

  Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage

  antivirusyarayara-scannerclamav-scanningclamav-antivirusapi-restrest-apisecurity-toolssecurityawscloudcloudsecuritys3scannerinfosecazureazure-blob-storagegcpgcp-cloud-storagevirus-scannervirus-scanning
  Language:Go 22

• rpgeeganage / audit-node-modules-with-yara

  Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles

  malware-analysisstatic-analysisyara-rulesyara-scanneryara-forensicsnodejsnode-jsnode-modulenodesecuritynode-securitynode-security-program
  Language:YARA 20

• seanthegeek / yaramail

  A Python package and command line utility for scanning emails with YARA rules

  emailinformation-securityinfosecmalwarephishingsecuritysecurity-toolsyarayara-scanner
  Language:Python 20

• Krypteria / Yaralyze

  Yaralyze is an malware detection tool for Android that relies on two types of static analysis, Yara rule analysis and hashes analysis.

  android-applicationantimalwarejavamalware-detectionpythonstatic-analysisyara-rulesyara-scanner
  Language:Java 18

• Humoud / apksneeze-lab

  Analyze Android APK files from a browser.

  analysisandroid-reverse-engineeringdockerdocker-composeflask-applicationyara-scanner
  Language:HTML 14

• deadbits / pe-static

  Static file analysis for PE files

  malware-analysispe-analyzermalware-researchmalware-analyzeryarayara-scanner
  Language:Python 13

• dmknght / rkcheck

  A malware scanner with Yara and ClamAV binding

  antivirusclamav-antivirusyara-scanner
  Language:Nim 12

• paulveillard / cybersecurity-YARA

  An ongoing collection of awesome tools and frameworks, best security software practices, libraries, learning tutorials, frameworks, academic and practical resources about YARA in cybersecurity

  yarayara-scanneryara-signaturesyara-manageryara-forensics
  9
• paranoya

  c0m4r / paranoya

  Simple IOC and YARA scanner for Linux®

  yarayara-scannermalware-detectorpythonsecuritysecurity-toolparanoya
  Language:Python 7

• dyussekeyev / thamara

  THAMARA - Threat Hunting with AMSI and YARA

  amsicybercyber-securitycyberseccybersecurityinformation-securityinformationsecurityinfosecinfosectoolsmalwaremalware-detectionmalware-protectionthreat-detectionthreat-huntingthreathuntingyarayara-forensicsyara-scanner
  Language:C 6

• h4rdee / a-re-windows

  windows apps analysis toolkit

  malware-analysismalware-analyzermalware-detectionreverse-engineeringwindowsyarayara-scanneryara-signatures
  Language:YARA 6

• ChrisPritchard / slack-yara-scanner

  A Slack App (AWS Lambda) for detecting and notifying on secret disclosure

  aws-lambdaslack-botyara-scanner
  Language:YARA 5

• deadbits / yaraVT

  Scan files with Yara and send rule matches to VirusTotal reports as comments

  virustotalyara-scanneryaramalware-analysismalware-researchpython
  Language:Python 5

• anyrun / anyrun-sdk

  Simplify integration with ANY.RUN REST API services

  aiohttpanyrunasynciomalware-analysismalware-detectionpython3threat-intelligenceiterator-protocolyara-rulesyara-scanner
  Language:Python 4

• kittymagician / Aegis

  Aegis - Flask web interface for scanning files with YARA

  python3flask-applicationyarayara-forensicsyara-scanner
  Language:HTML 4

• darsh12 / ansible-yara

  Ansible role - Build and install yara from source

  yaraansible-roleansible-galaxysecuritylinuxyara-scannerubuntudebian
  3