ransomwhere
YaraHunter
| ransomwhere | YaraHunter | |
|---|---|---|
| 3 | 3 | |
| 196 | 1,231 | |
| - | 0.5% | |
| 5.1 | 9.6 | |
| 3 days ago | 6 days ago | |
| Go | Go | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ransomwhere
YaraHunter
- Scans container images, running Docker containers and filesystems to find indicators of malware
- YaRadare
-
Introducing YaRadare - YARA scanning for cloud-native apps (containers)
We've released a new open source project - https://github.com/deepfence/YaRadare - for scanning cloud native applications (container images) for malware using the YARA rulesets.
What are some alternatives?
emp3r0r - Linux/Windows post-exploitation framework made by linux user
signature-base - YARA signature and IOC database for my scanners and tools
MicroSCOPE - Static analysis tool that can identify potential ransomware on PE or ELF files based on heuristics
ThreatIngestor - Extract and aggregate threat intelligence.
Coldfire - Golang malware development library
malware-ioc - Indicators of Compromises (IOC) of our various investigations
GoBot2 - Second Version of The GoBot Botnet, But more advanced.
radare2 - UNIX-like reverse engineering framework and command-line toolset
neurax - A framework for constructing self-spreading binaries
hawk - Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage
REconfig-linux - Configuration Extractor for the Linux variant of REvil Ransomware