InQuest YARA Rules Logo

InQuest YARA Rules

0
Free
Visit Website

A collection of YARA rules from InQuest for research and hunting purposes, including rules for Base64 Encoded Powershell, Embedded PE Files, Hex Encoded Powershell, and more. For further reading and references, visit the provided links.

FEATURES

ALTERNATIVES

Forager is a threat intelligence tool that simplifies the retrieval, storage, and maintenance of threat data with a user-friendly interface and support for various data sources.

Generate Bro intel files from pdf or html reports.

Open Source Intelligence solution for threat intelligence data enrichment and quick analysis of suspicious files or malware.

A tracker that detects and logs SYN packets with a specific signature generated by the Mirai malware, providing real-time information on Mirai-based campaigns.

A threat hunting tool for Windows event logs to detect APT movements and decrease the time to uncover suspicious activity.

Automatic YARA rule generator based on Koodous reports with limited false positives.

PolySwarm is a malware intelligence marketplace that aggregates threat detection engines to provide early detection, unique samples, and higher accuracy.

Yara rule generator using VirusTotal code similarity feature code-similar-to.

PINNED