Rule Engine
Explore 20 curated tools and resources
LATEST ADDITIONS
Embeddable Yara library for Java with support for loading rules and scanning data.
A free web-based Yara debugger for security analysts to write hunting or detection rules with ease.
A tool for creating custom detection rules from YAML input
Repository for detection content with various types of rules and payloads.
A set of interrelated detection rules for improving detection and hunting visibility and context
YARA rules for ProcFilter to detect malware and threats
Tool for visualizing correspondences between YARA ruleset and samples
A set of rules for detecting threats in various formats, including Snort, Yara, ClamAV, and HXIOC.
Tool for decompressing malware samples to run Yara rules against them.
Yaramod is a library for parsing YARA rules into AST and building new YARA rulesets with C++ programming interface.
Bindings for the Yara library from VirusTotal with support for Yara v4.2 and various features like rule compilation and scanning.
Open-source rules for detecting and preventing email attacks like BEC, malware, and credential phishing.
A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.
Official repository of YARA rules for threat detection and hunting
A Go library for manipulating YARA rulesets with the ability to programatically change metadata, rule names, and more.
Serverless, real-time data analysis framework for incident detection and response.
Open source tool for generating YARA rules about installed software from a running OS.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security