Detection and Hunting Signatures Logo

Detection and Hunting Signatures

0
Free
Updated 11 March 2025
Network Security
Snort
Yara
Clamav
Rule Engine
Visit Website

A set of interrelated network and host detection rules with the aim of improving detection and hunting visibility and context. Where applicable, each Snort rule includes metadata indicating the corresponding Yara and ClamAV rules, and each Yara signature also includes metadata to the corresponding Snort and ClamAV rules, and so on. Supported Rules Currently, Snort 3, Yara and ClamAV rules are supported. Additional singatures and formats are work in progress. Scripts Currently, only scripts available are used to aid in auto-generation of hash-based and certificate-based Yara rules.

FEATURES

EXPLORE BY TAGS

Snort

Yara

Clamav

Rule Engine

SIMILAR TOOLS

GraphQL Beautifier Logo
GraphQL Beautifier

A Burp Suite extension that formats GraphQL requests for easier reading

Free
Network Security
Scapy Logo
Scapy

A powerful interactive packet manipulation program and library for network exploration and security testing.

Free
Network Security
libnids Logo
libnids

Libnids is an implementation of an E-component of Network Intrusion Detection System that emulates the IP stack of Linux 2.0.x and offers IP defragmentation, TCP stream assembly, and TCP port scan detection.

Free
Network Security
tcpkill Logo
tcpkill

A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.

Free
Network Security
IPQuery Logo
IPQuery

An IP address intelligence API that provides geolocation data and threat detection capabilities for IPv4 and IPv6 addresses.

Commercial
Network Security
sniffglue Logo
sniffglue

Sniffglue is a network sniffer tool written in Rust with advanced filter sensitivity options and secure packet processing.

Free
Network Security
csprecon Logo
csprecon

A tool to discover new target domains using Content Security Policy

Free
Network Security
wireshark Logo
wireshark

A free, open-source network protocol analyzer for capturing and displaying packet-level data.

Free
Network Security
Kubernetes Network Policy Recipes Logo
Kubernetes Network Policy Recipes

Contains various use cases of Kubernetes Network Policies and sample YAML files.

Free
Network Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy