Canadian Centre for Cyber Security CCCS YARA Specification Logo

Canadian Centre for Cyber Security CCCS YARA Specification

0
Free
Visit Website

The CCCS YARA Specification defines and validates the style and format of YARA rule metadata, allowing for automatic validation and generation of metadata, including unique id, rule fingerprint, and actor enrichment from ATT&CK. It also includes fields specific to the MITRE ATT&CK framework to identify techniques and universal threat groups, supporting tools like AssemblyLine and vscode-yara.

FEATURES

ALTERNATIVES

A collection of Yara rules for identifying malicious PEs with unique or suspicious PDB paths.

A static analysis tool for PE files that detects malicious behavior and provides information for manual analysis.

A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.

Use FindYara, an IDA python plugin, to scan your binary with yara rules and quickly jump to matches.

Dalfox is a powerful open-source XSS scanner and utility focused on automation.

A simple Python script to test for a hypothetical JWT vulnerability

UDcide provides an alternative approach to dealing with Android malware by targeting specific behaviors for removal.

A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

PINNED