Yara

Management portal for LoKi scanner with centralized database for scanning activities.

A Django web interface for managing Yara rules with features like search, categorization, and bulk edits.

IDAPython plugin for generating Yara rules/patterns from x86/x86-64 code through parameterization.

C# wrapper around Yara pattern matching library with Loki and Yara signature support.

OCaml bindings to the YARA scanning engine for integrating YARA scanning capabilities into OCaml projects

A multithreaded YARA scanner for incident response or malware zoos.

An open source tool that generates YARA rules from installed software on running operating systems for efficient software identification in digital forensic investigations.

A simple, self-contained modular host-based IOC scanner for incident responders.

A generator for YARA rules that creates rules from strings found in malware files while removing strings from goodware files.

Halogen automates the creation of YARA rules based on image files embedded in malicious documents to assist in threat detection and identification.

A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.

A tool for sorting YARA rules based on metadata.

Repository of YARA rules for Trellix ATR blogposts and investigations

Blazingly fast Yara queries for malware analysts with an analyst-friendly web GUI.

A tool for processing compiled YARA rules in IDA.

A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS.

A tool for tracking, scanning, and filtering yara files with distributed scanning capabilities.

A community-maintained repository of YARA rules for detecting and classifying malware based on patterns and characteristics.

yextend extends Yara's functionality by automatically handling archived and compressed content inflation, enabling pattern matching on files buried within multiple layers of archives.

Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.