Best yara-rust Alternatives & Competitors in 2026

Detection Content Repository

Repository for detection content with various types of rules and payloads.

FireEye Red Team Tool Countermeasures

A set of rules for detecting threats in various formats, including Snort, Yara, ClamAV, and HXIOC.

VT_RuleMGR.py

Tool for managing Yara rules on VirusTotal

Cythereal MAGIC EWS

Analyzes stopped attacks to auto-generate YARA rules and IoCs against APTs.

CrowdFMS

CrowdFMS is a CrowdStrike framework that automates malware sample collection from VirusTotal using YARA rule-based notifications and the Private API system.

CDI_yara

A collection of YARA rules for public use, built from intelligence profiles and file work.

Canadian Centre for Cyber Security CCCS YARA Specification

Define and validate YARA rule metadata with CCCS YARA Specification.

YaraDbg

A free web-based Yara debugger for security analysts to write hunting or detection rules with ease.

ThreatKB

Knowledge base workflow management dashboard for YARA rules and C2 artifacts.

KLara

KLara is a distributed system written in Python that helps Threat Intelligence researchers hunt for new malware using Yara.

Signature-Base

YARA signature and IOC database for LOKI and THOR Lite scanners with high quality rules and IOCs.

yara-parser

A Go library for manipulating YARA rulesets with the ability to programatically change metadata, rule names, and more.

Project Icewater

A project providing open-source YARA rules for malware and malicious file detection

Yara Rule Generator

A tool for quick and effective Yara rule creation to isolate malware families and malicious objects.

Yara Rules Project

A repository of Yara signatures under the GNU-GPLv2 license for the cybersecurity community.

yaramod

Yaramod is a library for parsing YARA rules into AST and building new YARA rulesets with C++ programming interface.

Private Yara Rules Repository

A repository of freely usable Yara rules for detection systems, with automated error detection workflows.

Malware Signatures Overview

A collection of Yara signatures developed by Citizen Lab to detect malware used in targeted attacks against civil society organizations.

Shotgunyara

A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.

YARA Rules Collection

Collection of YARA signatures from recent malware research.

Yara VirusTotal Commenter

Scan files with Yara, match findings to VirusTotal comments.

Detection and Hunting Signatures

A set of interrelated detection rules for improving detection and hunting visibility and context

Malware Indicators of Compromise

Provides indicators of compromise (IOCs) to combat malware with Yara and Snort rules.

YARA Rules for ProcFilter

YARA rules for ProcFilter to detect malware and threats

YARA-Signatures

A collection of public YARA signatures for various malware families.

YARA Matches Correspondance Array (YMCA)

Tool for visualizing correspondences between YARA ruleset and samples

Malpedia's YARA-Signator Rules

Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.

yaml2yara

A tool for creating custom detection rules from YAML input

Yara-Java

Embeddable Yara library for Java with support for loading rules and scanning data.

ReversingLabs YARA Rules

Official repository of YARA rules for threat detection and hunting

yara_repo

Repository of Yara Rules created by TjNel.

Google Security Operations

Cloud-native SIEM, SOAR, and threat intel platform for SecOps teams

Binary Defense Threat Hunting

A managed security service that uses hypothesis-based threat hunting to proactively discover hidden threats, create new detection rules, and improve overall security posture.

detections.ai Detections

Community platform for sharing and creating detection rules with AI

Axur AI-Powered Cyber Threat Intelligence

AI-powered cyber threat intelligence platform with real-time monitoring

SOC Prime Threat Detection Marketplace

Threat detection marketplace with Sigma rules for SIEM and shift-left detection

Red Canary Threat Intelligence

Threat intelligence service providing threat profiles and analytics for MDR

Defender Lens

Turn Any Threat into a Detection Rule

aDolus FACT - Malware Detection

FACT detects malware & ransomware in packages using AV scans & YARA rules.

Cythereal MAGIC™

Malware hunting platform that auto-generates YARA rules from shared code analysis.

Sesame IT HOSHI

Curated attack use case platform that feeds threat scenarios into Jizô AI.

PhishingKit-Yara-Rules

A StalkPhish Project YARA repository for Phishing Kits zip files.

OCyara

OCyara performs OCR on images and PDF files to extract text content and scan it against Yara rules for malware detection.

Yara Pattern Scanner

A Windows context menu integration tool that scans files and folders for malware patterns, crypto signatures, and malicious documents using Yara rules and PEID signatures.

Sublime Security Sublime Rules

Open-source detection rules for email attacks like BEC, phishing, and malware

InQuest Labs

The Trystero Project is a threat intelligence platform that measures email security efficacy and provides various tools and resources, while VMware Carbon Black offers endpoint protection and workload security solutions.

THOR Lite

A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS.

Yara Manager

A program to manage yara ruleset in a database with support for different databases and configuration options.