awesome-yara
A curated list of awesome YARA rules, tools, and people. (by InQuest)
malware-ioc
Indicators of Compromises (IOC) of our various investigations (by eset)
Our great sponsors
awesome-yara | malware-ioc | |
---|---|---|
7 | 6 | |
3,245 | 1,503 | |
2.9% | 1.7% | |
5.6 | 6.9 | |
16 days ago | 15 days ago | |
YARA | ||
GNU General Public License v3.0 or later | BSD 2-clause "Simplified" License |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-yara
Posts with mentions or reviews of awesome-yara.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-06-16.
- XSOAR Yara Feeds
- Incorporating YARA Into Security Processes?
-
Cybersecurity Repositories
YARA
-
YARA Rules for Malware
Check out the myriad of resources available here: https://github.com/InQuest/awesome-yara
-
Identifying packers, crypters or protectors
A signature-based approach with YARA can work to fingerprint the specific software used to obfuscate the malware. A lot of YARA rules for a variety of purposes can be found here, and it might be useful to aggregate ones you care about into your own little detection pipeline.
-
What are the best FOSS YARA rules you would recommend to deploy?
https://github.com/InQuest/awesome-yara#rules
- InQuest/awesome-yara - A curated list of awesome YARA rules, tools, and people.
malware-ioc
Posts with mentions or reviews of malware-ioc.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-08-18.
-
What are your go-to websites to read cybersecurity news in 2023?
www.welivesecurity.com
-
Learning To Learn IT Security
WeLiveSecurity And many more.
- Open source tools and DFIR Tryhackme equivalents
-
Historic IOCs from previous APT campaigns
There are some here: https://github.com/eset/malware-ioc
-
This Linux malware is hijacking supercomputers across the globe
kabolos
-
New Linux malware steals SSH credentials from supercomputers
IOCs
What are some alternatives?
When comparing awesome-yara and malware-ioc you can also consider the following projects:
signature-base - YARA signature and IOC database for my scanners and tools
yara - The pattern matching swiss knife
awesome-malware-analysis - Defund the Police.
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
audit-node-modules-with-yara - Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles
Loki - Loki - Simple IOC and YARA Scanner
Detect-It-Easy - Program for determining types of files for Windows, Linux and MacOS.
reversinglabs-yara-rules - ReversingLabs YARA Rules
rules - Repository of yara rules
PEpper - An open source script to perform malware static analysis on Portable Executable
awesome-yara vs signature-base
malware-ioc vs yara
awesome-yara vs awesome-malware-analysis
malware-ioc vs signature-base
awesome-yara vs yara
malware-ioc vs intelmq
awesome-yara vs audit-node-modules-with-yara
malware-ioc vs Loki
awesome-yara vs Detect-It-Easy
malware-ioc vs reversinglabs-yara-rules
awesome-yara vs rules
malware-ioc vs PEpper