YaraHunter
malware-ioc
YaraHunter | malware-ioc | |
---|---|---|
3 | 6 | |
1,230 | 1,502 | |
0.4% | 0.7% | |
9.6 | 6.9 | |
2 days ago | 25 days ago | |
Go | YARA | |
Apache License 2.0 | BSD 2-clause "Simplified" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
YaraHunter
- Scans container images, running Docker containers and filesystems to find indicators of malware
- YaRadare
-
Introducing YaRadare - YARA scanning for cloud-native apps (containers)
We've released a new open source project - https://github.com/deepfence/YaRadare - for scanning cloud native applications (container images) for malware using the YARA rulesets.
malware-ioc
-
What are your go-to websites to read cybersecurity news in 2023?
www.welivesecurity.com
-
Learning To Learn IT Security
WeLiveSecurity And many more.
- Open source tools and DFIR Tryhackme equivalents
-
Historic IOCs from previous APT campaigns
There are some here: https://github.com/eset/malware-ioc
-
This Linux malware is hijacking supercomputers across the globe
kabolos
-
New Linux malware steals SSH credentials from supercomputers
IOCs
What are some alternatives?
signature-base - YARA signature and IOC database for my scanners and tools
awesome-yara - A curated list of awesome YARA rules, tools, and people.
ThreatIngestor - Extract and aggregate threat intelligence.
yara - The pattern matching swiss knife
radare2 - UNIX-like reverse engineering framework and command-line toolset
hawk - Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
ransomwhere - A PoC ransomware sample to test out your ransomware response strategy.
Loki - Loki - Simple IOC and YARA Scanner
reversinglabs-yara-rules - ReversingLabs YARA Rules
PEpper - An open source script to perform malware static analysis on Portable Executable