signature-base
YARA signature and IOC database for my scanners and tools (by Neo23x0)
Loki
Loki - Simple IOC and YARA Scanner (by Neo23x0)
Our great sponsors
| signature-base | Loki | |
|---|---|---|
| 11 | 12 | |
| 2,109 | 3,006 | |
| - | - | |
| 5.4 | 0.0 | |
| 11 days ago | 24 days ago | |
| YARA | Python | |
| GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
signature-base
Posts with mentions or reviews of signature-base.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-12-20.
-
Evidence of a log4j attack found - Now what?
Uses these YARA rules to read JAR, LOG, and TXT files on the system, throwing warnings if any log4shell-looking payloads are found based on those various rules.
-
APT29 / NOBELIUM VirusTotal retro hunt results using 12 newly release Yara rules
Rules https://github.com/Neo23x0/signature-base/blob/master/yara/apt_apt29_nobelium_may21.yar
- What are the best FOSS YARA rules you would recommend to deploy?
- OISD Domain Blocklist
Loki
Posts with mentions or reviews of Loki.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-31.
What are some alternatives?
When comparing signature-base and Loki you can also consider the following projects:
yara - The pattern matching swiss knife
reversinglabs-yara-rules - ReversingLabs YARA Rules
malware-ioc - Indicators of Compromises (IOC) of our various investigations
awesome-yara - A curated list of awesome YARA rules, tools, and people.
ThreatHunting - Tools for hunting for threats.
hazedumper - up to date csgo offsets and hazedumper config
audit-node-modules-with-yara - Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles
Veil-Evasion - Veil Evasion is no longer supported, use Veil 3.0!
yaramanager - Simple yara rule manager
pyHanko - pyHanko: sign and stamp PDF files