Ecosyste.ms: Repos
An open API service providing repository metadata for many open source software ecosystems.
GitHub topics: yara-rules
reversinglabs/reversinglabs-yara-rules
ReversingLabs YARA Rules
Language: YARA - Size: 504 KB - Last synced: about 17 hours ago - Pushed: about 19 hours ago - Stars: 703 - Forks: 102
a-sarja/Revisor
Revisor is a multi-AV file analyzer used to determine whether a file is malicious or not. It is integrated with Virus Total and ClamAV. It also provides crowd sourced Yara rules to identify the malware file.
Language: Python - Size: 1.19 MB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 5 - Forks: 0
KasperskyLab/klara
Kaspersky's GReAT KLara
Language: PHP - Size: 2.91 MB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 681 - Forks: 140
InQuest/awesome-yara
A curated list of awesome YARA rules, tools, and people.
Size: 458 KB - Last synced: 3 days ago - Pushed: 8 days ago - Stars: 3,283 - Forks: 467
mthcht/ThreatHunting-Keywords-yara-rules
yara detection rules for hunting with the threathunting-keywords project
Language: YARA - Size: 30.4 MB - Last synced: about 4 hours ago - Pushed: 7 days ago - Stars: 52 - Forks: 5
roadwy/DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
Language: YARA - Size: 37.8 MB - Last synced: 7 days ago - Pushed: 8 days ago - Stars: 95 - Forks: 23
sroberts/awesome-iocs
A collection of sources of indicators of compromise.
Language: Shell - Size: 52.7 KB - Last synced: 3 days ago - Pushed: about 1 month ago - Stars: 746 - Forks: 107
Neo23x0/Loki
Loki - Simple IOC and YARA Scanner
Language: Python - Size: 67.6 MB - Last synced: 13 days ago - Pushed: 3 months ago - Stars: 3,249 - Forks: 575
pseudo-security/slacksecrets
Scans Slack for API tokens, credentials, passwords, and more using YARA rules
Language: Python - Size: 43.9 KB - Last synced: 12 days ago - Pushed: about 3 years ago - Stars: 35 - Forks: 8
williamaiworld/loki-app
Loki - Simple IOC and YARA Scanner
Language: Python - Size: 67.5 MB - Last synced: 14 days ago - Pushed: 2 months ago - Stars: 0 - Forks: 0
ericyoc/gen_dga_regex_and_yara_rules_poc
A demonstration of domain generation algorithm (DGA) and determing regular expression and yara rule for each dga.
Language: Jupyter Notebook - Size: 817 KB - Last synced: 15 days ago - Pushed: 15 days ago - Stars: 0 - Forks: 0
AdamWhiteHat/Judge-Jury-and-Executable
A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Language: C# - Size: 27 MB - Last synced: 2 days ago - Pushed: about 2 months ago - Stars: 78 - Forks: 13
mrexodia/YaraFlirt
Project to convert F.L.I.R.T. Signatures signatures to Yara Rules.
Language: C# - Size: 3.91 KB - Last synced: 21 days ago - Pushed: about 7 years ago - Stars: 6 - Forks: 1
wesinator/threatconnect-yarasigs 📦
YARA sigs from public ThreatConnect reporting
Language: YARA - Size: 3.91 KB - Last synced: 21 days ago - Pushed: almost 4 years ago - Stars: 0 - Forks: 0
wesinator/OperationSMN-YARA-sigs
YARA rules from https://novetta.com/operationsmn
Language: YARA - Size: 8.79 KB - Last synced: 21 days ago - Pushed: almost 5 years ago - Stars: 0 - Forks: 0
corumir/YARA-Class-1
Hidden Secrets of Files with YARA Part I
Size: 486 KB - Last synced: 21 days ago - Pushed: over 4 years ago - Stars: 0 - Forks: 0
michelcrypt4d4mus/yaralyzer
Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
Language: Python - Size: 12.6 MB - Last synced: 3 days ago - Pushed: about 2 months ago - Stars: 99 - Forks: 13
Xumeiquer/yara-forensics
Set of Yara rules for finding files using magics headers
Language: YARA - Size: 74.2 KB - Last synced: 21 days ago - Pushed: over 3 years ago - Stars: 134 - Forks: 24
bartblaze/FARA
Repository that contains a set of purposefully erroneous Yara rules.
Language: YARA - Size: 16.6 KB - Last synced: 16 days ago - Pushed: 4 months ago - Stars: 46 - Forks: 2
K-atc/PEiD
Yet another implementation of PEiD with yara
Language: Go - Size: 5.62 MB - Last synced: 6 days ago - Pushed: over 7 years ago - Stars: 16 - Forks: 7
mtnmunuklu/analyze-tags
Analyzes tags of Sigma, Yara and CSIEM rules
Language: Go - Size: 73.2 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 0 - Forks: 0
InQuest/ThreatKB
Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Language: JavaScript - Size: 28.7 MB - Last synced: 6 days ago - Pushed: 7 days ago - Stars: 92 - Forks: 18
tatsuiman/slack-team-analyzer
チームのコミュニケーションを分析するためのツールキット
Language: YARA - Size: 327 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 5 - Forks: 0
Neo23x0/signature-base
YARA signature and IOC database for my scanners and tools
Language: YARA - Size: 38.2 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 2,315 - Forks: 585
InQuest/yara-rules
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
Language: Python - Size: 22.6 MB - Last synced: about 1 month ago - Pushed: about 2 years ago - Stars: 355 - Forks: 54
volexity/threat-intel
Signatures and IoCs from public Volexity blog posts.
Language: Python - Size: 912 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 255 - Forks: 51
boz3r/yara-rules-repo
The collection of YARA rules to perform malware threat hunting and detection.
Language: YARA - Size: 66.4 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1 - Forks: 0
t4d/PhishingKit-Yara-Search
Yara scan Phishing Kit's Zip archive(s)
Language: Python - Size: 22.5 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 50 - Forks: 11
sbousseaden/YaraHunts
Random hunting ordiented yara rules
Language: YARA - Size: 78.1 KB - Last synced: about 1 month ago - Pushed: about 1 year ago - Stars: 95 - Forks: 23
RussianPanda95/Yara-Rules
Repository of Yara Rules
Language: YARA - Size: 300 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 70 - Forks: 10
Fadavvi/Yara-Repo
A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-systems.com/
Language: Shell - Size: 104 KB - Last synced: about 1 month ago - Pushed: 9 months ago - Stars: 25 - Forks: 3
deadbits/yara-rules
Collection of YARA signatures from individual research
Language: YARA - Size: 191 KB - Last synced: about 2 months ago - Pushed: 6 months ago - Stars: 40 - Forks: 9
CIRCL/factual-rules-generator
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Language: Python - Size: 3.2 MB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 72 - Forks: 6
plyara/plyara
Parse YARA rules and operate over them more easily.
Language: Python - Size: 481 KB - Last synced: 13 days ago - Pushed: 7 months ago - Stars: 169 - Forks: 35
bartblaze/Yara-rules
Collection of private Yara rules.
Language: YARA - Size: 208 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 294 - Forks: 53
hyuunnn/Hyara
Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
Language: Python - Size: 8.23 MB - Last synced: about 1 month ago - Pushed: about 2 months ago - Stars: 212 - Forks: 45
marirs/dedupe_yara_rule-rs
Dedupe yara rules - Rust version
Language: Rust - Size: 4.43 MB - Last synced: about 2 months ago - Pushed: about 2 years ago - Stars: 0 - Forks: 1
RootMiner/YaraGuard
YaraGuard is an advanced malware analysis tool designed to empower users in the relentless pursuit of securing digital environments. At its core, YaraGuard utilizes YARA rules, providing a sophisticated and effective means of scanning files for potential threats.
Language: YARA - Size: 12.6 MB - Last synced: 28 days ago - Pushed: 3 months ago - Stars: 4 - Forks: 2
elastic/siglearn
Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
Language: YARA - Size: 22 MB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 12 - Forks: 5
lprat/static_file_analysis
Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Language: YARA - Size: 9.26 MB - Last synced: about 1 month ago - Pushed: 9 months ago - Stars: 47 - Forks: 11
whichbuffer/Threat-Detection-Rules
Threat Detection Repository - YARA / SIGMA rules
Language: YARA - Size: 104 KB - Last synced: 2 months ago - Pushed: 2 months ago - Stars: 3 - Forks: 0
pressidium/pressidium-yara-rules
Welcome to the Pressidium® Yara Rules repository. This section contains a carefully curated collection of Yara rules specifically designed to detect and prevent WordPress or PHP malware and viruses, ensuring a safer online environment.
Language: YARA - Size: 58.6 KB - Last synced: 2 months ago - Pushed: 7 months ago - Stars: 6 - Forks: 0
threatlabz/iocs
This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
Language: YARA - Size: 163 KB - Last synced: about 1 month ago - Pushed: 4 months ago - Stars: 59 - Forks: 11
umutsevdi/pds
Machine Learning and Regex Matching based Phishing Detection System with a phishing attack scenario
Language: HTML - Size: 36.9 MB - Last synced: 3 months ago - Pushed: over 1 year ago - Stars: 1 - Forks: 1
blackberry/threat-research-and-intelligence
BlackBerry Threat Research & Intelligence
Language: Jupyter Notebook - Size: 20.3 MB - Last synced: about 1 month ago - Pushed: 7 months ago - Stars: 88 - Forks: 14
YARA-Silly-Silly/yarasilly2
Automatic generation of YARA rules from sample files.
Language: Python - Size: 317 KB - Last synced: 19 days ago - Pushed: 19 days ago - Stars: 26 - Forks: 3
sapphirex00/Threat-Hunting
Personal compilation of APT malware from whitepaper releases, documents and own research
Size: 10.9 MB - Last synced: 26 days ago - Pushed: over 5 years ago - Stars: 250 - Forks: 55
PUNCH-Cyber/YaraGuardian
Django web interface for managing Yara rules
Language: Python - Size: 831 KB - Last synced: about 1 month ago - Pushed: almost 6 years ago - Stars: 187 - Forks: 43
aleprada/my_yara_rules
A repository with the yara rules that I've been using for improving my yara skills and hunting malware.
Language: YARA - Size: 15.6 KB - Last synced: 3 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0
uvasoftware/yara-language-nsfw
Lists of not-suitable-for-work words as YARA rules
Language: YARA - Size: 86.9 KB - Last synced: about 1 month ago - Pushed: 7 months ago - Stars: 25 - Forks: 5
trailblazergt/Cyber-Security
This is a repo for various small scrips related to cyber security.
Language: YARA - Size: 23.4 KB - Last synced: 3 months ago - Pushed: over 3 years ago - Stars: 3 - Forks: 0
corumir/Groom-Porter
Simple script to do some quality control and pull metrics from YARA files.
Language: Python - Size: 10.7 KB - Last synced: 21 days ago - Pushed: over 6 years ago - Stars: 4 - Forks: 2
PwCUK-CTO/rtfsig
A tool to help malware analysts signature unique parts of RTF documents
Language: Rich Text Format - Size: 283 KB - Last synced: 13 days ago - Pushed: 4 months ago - Stars: 28 - Forks: 2
Onils/yara-linux-malware
Detect Linux malicious files with Yara.
Language: YARA - Size: 3.91 KB - Last synced: 4 months ago - Pushed: about 3 years ago - Stars: 3 - Forks: 1
cod3nym/detection-rules
Collection of my own detection rules
Language: YARA - Size: 50.8 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 10 - Forks: 2
rpgeeganage/audit-node-modules-with-yara
Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles
Language: YARA - Size: 89.8 KB - Last synced: about 1 month ago - Pushed: about 3 years ago - Stars: 19 - Forks: 1
Hestat/lw-yara
Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Language: YARA - Size: 480 KB - Last synced: about 2 months ago - Pushed: about 3 years ago - Stars: 100 - Forks: 34
erdemkm/zeekYaraScanner
Scan extracted file from Zeek with Yara rules and get statistical analysis for matching files. Optionally, simulate matching malicious files with Picus.
Language: Python - Size: 32.2 KB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 12 - Forks: 0
meese-enterprises/yara-rules
Yara rules for detecting interesting or malicious network traffic.
Language: YARA - Size: 9.77 KB - Last synced: about 1 month ago - Pushed: 6 months ago - Stars: 1 - Forks: 0
NumLocK15/YaraStation
Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centralized management solution that facilitates result investigation and easier scanning capabilities.
Language: JavaScript - Size: 68.8 MB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 34 - Forks: 3
Mohamed-Adil-Cyber/Static_YaraRule_Maker
This is a gui script that takes a pe file and creates a yara file to detect it
Language: Python - Size: 3.91 KB - Last synced: 7 months ago - Pushed: over 1 year ago - Stars: 3 - Forks: 0
thewhiteninja/yarasploit
YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.
Language: YARA - Size: 430 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 41 - Forks: 6
ChakreshSinghUC/My-Masters-Projects
Projects here are the ones I did as a part of my Masters degree at the University of Cincinnati
Language: C++ - Size: 13.4 MB - Last synced: 7 months ago - Pushed: about 7 years ago - Stars: 2 - Forks: 1
saferwall/yara-rules
Saferwall Yara Rules
Language: YARA - Size: 22.5 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 4 - Forks: 0
threatcode/YARA
The pattern matching swiss knife
Language: C - Size: 3.71 MB - Last synced: about 1 month ago - Pushed: 8 months ago - Stars: 1 - Forks: 0
Krkn-Sec/YARA-Rules
Various YARA rules I've created.
Language: YARA - Size: 30.3 KB - Last synced: 7 months ago - Pushed: over 1 year ago - Stars: 2 - Forks: 1
imp0rtp3/yara-rules
Yara rules written by me, for free use.
Language: YARA - Size: 30.3 KB - Last synced: about 2 months ago - Pushed: over 2 years ago - Stars: 18 - Forks: 3
imp0rtp3/js-yara-rules
Yara rules for malicious javascript files from public repositories or written by me.
Language: YARA - Size: 69.3 KB - Last synced: 5 months ago - Pushed: over 2 years ago - Stars: 9 - Forks: 2
LeakIX/yara-repo-misc
Yara rules gathered from misc places
Language: YARA - Size: 9.77 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 0 - Forks: 0
RachidAZ/ELTE_Scanner
suspecious files detector
Language: C# - Size: 604 KB - Last synced: 8 months ago - Pushed: about 4 years ago - Stars: 2 - Forks: 2
NextSecurity/YaraGuardian Fork of PUNCH-Cyber/YaraGuardian
Django web interface for managing Yara rules
Language: Python - Size: 760 KB - Last synced: 8 months ago - Pushed: over 6 years ago - Stars: 0 - Forks: 0
bnbdr/ida-yara-processor
IDA Processor for Compiled YARA Rules
Language: Python - Size: 78.1 KB - Last synced: about 1 month ago - Pushed: over 5 years ago - Stars: 26 - Forks: 4
MFMokbel/EKFiddle2Yara
EKFiddle2Yara is a tool that takes EKFiddle rules and converts them into Yara rules.
Language: YARA - Size: 864 KB - Last synced: 9 months ago - Pushed: 9 months ago - Stars: 2 - Forks: 0
trendmicro/research
Resources from Trend Micro Research teams
Language: YARA - Size: 20.5 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 21 - Forks: 2
mpodolsk/boreal_py
python module for using boreal rust lib that implements YARA
Language: Rust - Size: 45.9 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 0 - Forks: 0
boz3r/boyo
The collection of YARA rules to perform botnets threat hunting.
Language: YARA - Size: 18.6 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 0 - Forks: 0
BitsOfBinary/yarabuilder
Python 3 library to build YARA rules.
Language: Python - Size: 172 KB - Last synced: 27 days ago - Pushed: over 2 years ago - Stars: 12 - Forks: 2
ManuelBerrueta/YARA-rules
Yara rules
Language: YARA - Size: 5.86 KB - Last synced: 10 months ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0
dehoisted/Yara-Rules
Useful Yara rules that I made/use.
Language: YARA - Size: 31.3 KB - Last synced: 10 months ago - Pushed: almost 3 years ago - Stars: 4 - Forks: 0
sansan-monkey/hunting-rules
Threat Hunting Rules - work in progress
Size: 104 KB - Last synced: 10 months ago - Pushed: 10 months ago - Stars: 1 - Forks: 0
BitsOfBinary/yaraparser
Python 3 tool to parse Yara rules (extension of yarabuilder)
Language: Python - Size: 10.7 KB - Last synced: about 1 month ago - Pushed: almost 4 years ago - Stars: 7 - Forks: 2
jaegeral/yara-forensics-rules
A collection of yara rules that can be used for forensics (non malware) cases but also some other rules
Language: YARA - Size: 35.2 KB - Last synced: 10 months ago - Pushed: over 1 year ago - Stars: 2 - Forks: 0
buzzer-re/strTwins
Static binary analysis tool to compute shared strings references between binaries and output in JSON, YAML and YARA
Language: Go - Size: 46.9 KB - Last synced: 10 months ago - Pushed: almost 2 years ago - Stars: 3 - Forks: 0
CyberDefenses/CDI_yara
A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
Size: 2.93 KB - Last synced: about 1 month ago - Pushed: 9 months ago - Stars: 17 - Forks: 4
sathishshan/S_Yara-ruleset
S_yara-ruleset is based on Web Malwares (Open Source)
Size: 89.8 KB - Last synced: 2 months ago - Pushed: over 4 years ago - Stars: 1 - Forks: 0
zinderic/mkyar
Simple tool to automatically create Yara rules that map a binary file
Language: Go - Size: 25.4 KB - Last synced: 9 months ago - Pushed: 10 months ago - Stars: 1 - Forks: 0
xenthy/threat-needle
🛠️ Not your average network forensic tool 🛠️
Language: YARA - Size: 14.9 MB - Last synced: 8 months ago - Pushed: over 3 years ago - Stars: 9 - Forks: 2
alt3kx/wafaray
Enhance your malware detection with WAF + YARA (WAFARAY)
Language: Shell - Size: 1.41 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 80 - Forks: 10
coraltk/pkt
stateless firewall with yara like rules in python
Language: Python - Size: 356 KB - Last synced: about 1 year ago - Pushed: almost 2 years ago - Stars: 1 - Forks: 0
iomoath/yara-scanner
YaraScanner is a file pattern-matching tool based on YARA rules.
Language: Python - Size: 155 KB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 34 - Forks: 11
umair9747/yara-rules
This repository contains a list of known YARA rules which researchers can use according to their needs.The repository is opensource and can be used by the end users as long as they follow the GNU GENERAL PUBLIC LICENSE V3.
Language: YARA - Size: 121 KB - Last synced: 12 months ago - Pushed: over 1 year ago - Stars: 6 - Forks: 6
tjnel/yara_repo
Repository of Yara Rules created by TjNel
Language: YARA - Size: 10.7 KB - Last synced: about 2 months ago - Pushed: about 5 years ago - Stars: 8 - Forks: 4
f0wl/yara_rules
A collection of yara rules that I created during analysis / for blog posts
Language: YARA - Size: 34.2 KB - Last synced: about 2 months ago - Pushed: about 2 years ago - Stars: 8 - Forks: 3
pracsec/YaraTools
Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.
Language: PowerShell - Size: 24.6 MB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 10 - Forks: 3
Major2000/Yara-rules Fork of bartblaze/Yara-rules
Collection of private Yara rules.
Language: YARA - Size: 162 KB - Last synced: 11 months ago - Pushed: about 1 year ago - Stars: 1 - Forks: 0
d0nkeyk0ng787/Yara-Rule-Generator
A powershell script that uses FLOSS output and a JSON configuration file to write YARA rules.
Language: PowerShell - Size: 6.84 KB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 0 - Forks: 0
bandrel/OCyara
Performs OCR on image files and scans them for matches to YARA rules
Language: Python - Size: 221 KB - Last synced: about 3 hours ago - Pushed: over 5 years ago - Stars: 38 - Forks: 8
sufyandaredevil/MALWARE_DEV
Repo containing different types of malware writing concepts
Language: C++ - Size: 242 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 3 - Forks: 0
StefanKelm/yara-rules
Links to malware-related YARA rules
Size: 18.6 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 16 - Forks: 2
princep4/RevX
RevX is integration of various features used while doing reverse engineering of Malware
Language: Python - Size: 14.6 KB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 0 - Forks: 0