Open-source projects categorized as Yara

Top 23 Yara Open-Source Projects

  • yara

    The pattern matching swiss knife

    Project mention: Who does check linux distros of malware - open source | /r/linux | 2023-12-10

    Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata...

  • Loki

    Loki - Simple IOC and YARA Scanner (by Neo23x0)

    Project mention: My Boss Downloaded and Opened a .lnk File and Installed a Malware in His Device | /r/computerforensics | 2023-06-06

    You should run a tool like loki for ioc scanning. This will identify persistence https://github.com/Neo23x0/Loki

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  • awesome-yara

    A curated list of awesome YARA rules, tools, and people.

  • signature-base

    YARA signature and IOC database for my scanners and tools

    Project mention: Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook | /r/u_Tsofmetasploit | 2023-03-16
  • DIE-engine

    DIE engine

  • APKiD

    Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

  • malware-ioc

    Indicators of Compromises (IOC) of our various investigations

  • LearnThisRepo.com

    Learn 300+ open source libraries for free using AI. LearnThisRepo lets you learn 300+ open source repos including Postgres, Langchain, VS Code, and more by chatting with them using AI!

  • yarGen

    yarGen is a generator for YARA rules

  • YaraHunter

    🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍

  • Ukraine-Cyber-Operations

    Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

  • strelka

    Real-time, container-based file scanning at enterprise scale (by target)

  • ThreatIngestor

    Extract and aggregate threat intelligence.

  • reversinglabs-yara-rules

    ReversingLabs YARA Rules

  • yara-python

    The Python interface for YARA

  • ImHex-Patterns

    Hex patterns, include patterns and magic files for the use with the ImHex Hex Editor

  • iocextract

    Defanged Indicator of Compromise (IOC) Extractor.

    Project mention: DataSurgeon: Quickly Extracts IP's, Email Addresses, Hashes, Files, URLs, Phone numbers and more from text | /r/programming | 2023-03-03

    Similar tool, but more estabilished and tailored specifically for threat hunting: https://github.com/InQuest/python-iocextract

  • S1EM

    This project is a SIEM with SIRP and Threat Intel, all in one.

    Project mention: Homelab Cybersecurity Idea | /r/homelab | 2023-04-28

    Also have an instance of S1EM - https://github.com/V1D1AN/S1EM - running, monitoring my home LAN, firewall etc. It's huge overkill, and your machine may struggle to run it if you ran anything else with it, but might be worth looking at.

  • binlex

    A Binary Genetic Traits Lexer Framework

  • go-yara

    Go bindings for YARA

    Project mention: Best regexp alternative for Go. Benchmarks. Plots. | dev.to | 2023-08-26

    go-yara - A tool for identifying and classifying malware samples. Although YARA has functionality for templating and regular expressions, it is very limited, so I will not include this library in the upcoming tests.

  • sauron

    A minimalistic cross-platform malware scanner with non-blocking realtime filesystem monitoring using YARA rules. (by evilsocket)

  • YAMA

    Yet Another Memory Analyzer for malware detection

    Project mention: YAMA: Yet Another Memory Analyzer for malware detection | /r/blueteamsec | 2023-08-14
  • fleur

    Fleur implements a Bloom Filter library in C that is fully compatible with DCSO's Go and python implementations.

  • wafaray

    Enhance your malware detection with WAF + YARA (WAFARAY)

  • WorkOS

    The modern API for authentication & user identity. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-12-10.

Yara related posts


What are some of the best open-source Yara projects? This list will help you:

Project Stars
1 yara 7,441
2 Loki 3,156
3 awesome-yara 3,152
4 signature-base 2,243
5 DIE-engine 2,018
6 APKiD 1,829
7 malware-ioc 1,477
8 yarGen 1,418
9 YaraHunter 1,224
10 Ukraine-Cyber-Operations 907
11 strelka 774
12 ThreatIngestor 758
13 reversinglabs-yara-rules 667
14 yara-python 605
15 ImHex-Patterns 501
16 iocextract 478
17 S1EM 381
18 binlex 380
19 go-yara 338
20 sauron 177
21 YAMA 158
22 fleur 116
23 wafaray 102
The modern API for authentication & user identity.
The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.