|17 days ago||over 1 year ago|
|GNU General Public License v3.0 or later||-|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
1 project | reddit.com/r/AskNetsec | 4 Mar 2022
If you have a Yara detection platform, Florian Roth’s rules should detect executables signed with this. https://github.com/Neo23x0/signature-base/blob/master/yara/gen_nvidia_leaked_cert.yar.
Evidence of a log4j attack found - Now what?
2 projects | reddit.com/r/cybersecurity | 20 Dec 2021
Uses these YARA rules to read JAR, LOG, and TXT files on the system, throwing warnings if any log4shell-looking payloads are found based on those various rules.
Yara rule to detect ProxyToken exploitation
1 project | reddit.com/r/blueteamsec | 30 Aug 2021
APT29 / NOBELIUM VirusTotal retro hunt results using 12 newly release Yara rules
2 projects | reddit.com/r/blueteamsec | 30 May 2021
What are the best FOSS YARA rules you would recommend to deploy?
2 projects | reddit.com/r/blueteamsec | 11 May 2021
OISD Domain Blocklist
4 projects | reddit.com/r/oisd_blocklist | 16 Mar 2021
At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software
1 project | reddit.com/r/cybersecurity | 5 Mar 2021
Is this what he's writing about that anyone can use to scan for backdoors? https://github.com/Neo23x0/signature-base/blob/master/yara/apt_hafnium.yar
Auditing NodeJs modules with YARA rules
1 project | dev.to | 6 Apr 2021
To achieve this, I started setting up a small project. It is available at https://github.com/rpgeeganage/audit-node-modules-with-yara
Node Module supplier chain attack detect using YARA rules
1 project | news.ycombinator.com | 30 Mar 2021
Audit Node Module folder with YARA rules
1 project | reddit.com/r/ReverseEngineering | 24 Mar 20211 project | reddit.com/r/Malware | 24 Mar 2021
GitHub Repo: https://github.com/rpgeeganage/audit-node-modules-with-yara
What are some alternatives?
Loki - Loki - Simple IOC and Incident Response Scanner
malware-ioc - Indicators of Compromises (IOC) of our various investigations
ThreatHunting - Tools for hunting for threats.
awesome-yara - A curated list of awesome YARA rules, tools, and people.
solidarity - Solidarity is an environment checker for project dependencies across multiple machines.
jsonschema-bigquery - Convert JSON schema to Google BigQuery schema
PEpper - An open source script to perform malware static analysis on Portable Executable
obs-studio-node - libOBS (OBS Studio) for Node.Js, Electron and similar tools
reversinglabs-yara-rules - ReversingLabs YARA Rules
uBlock - uBlock Origin - An efficient blocker for Chromium and Firefox. Fast and lean.