YARA malware-analysis

Open-source YARA projects categorized as malware-analysis | Edit details

YARA malware-analysis Projects

  • PEpper

    An open source script to perform malware static analysis on Portable Executable

    Project mention: Identifying packers, crypters or protectors | reddit.com/r/Malware | 2021-05-24

    As others have mentioned, looking at entropy is a good metric to generically determine whether or not a given sample is being packed / obfuscated in some way. Doing static analysis on the binary format itself (I'm assuming PE for Windows is the goal) is also useful, such as checking whether or not a section's raw size on disk is much smaller than the virtual size allocated in-memory for that section, which is a reliable indication of packing behavior. This project looks useful for introspecting such behaviors.

  • audit-node-modules-with-yara

    Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles

    Project mention: Auditing NodeJs modules with YARA rules | dev.to | 2021-04-06

    To achieve this, I started setting up a small project. It is available at https://github.com/rpgeeganage/audit-node-modules-with-yara

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-05-24.

YARA malware-analysis related posts

Index

Project Stars
1 PEpper 270
2 audit-node-modules-with-yara 17
Find remote jobs at our new job board 99remotejobs.com. There are 30 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Less time debugging, more time building
Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
scoutapm.com