InQuest YARA Rules

0 (0)

A collection of YARA rules from InQuest for research and hunting purposes, including rules for Base64 Encoded Powershell, Embedded PE Files, Hex Encoded Powershell, and more. For further reading and references, visit the provided links.

Threat Management

Free

yara powershell malware-analysis threat-hunting incident-response

ALTERNATIVES

PhishingKit-Yara-Rules

0 (0)

A StalkPhish Project YARA repository for Phishing Kits zip files.

Threat Management

Free

phishing yara rules file-system-analysis

FireHOL IP Aggregator

0 (0)

Aggregator of FireHOL IP lists with HTTP-based API service and Python client package.

Threat Management

Free

docker search

Halogen

0 (0)

Automatically create yara rules based on images embedded in office documents.

Threat Management

Free

binary-security file-analysis image-processing malware-analysis threat-hunting yara-rules

Poortego

0 (0)

A cybersecurity tool for managing data points and cyber threat indicators with a focus on neo4j data traversal.

Threat Management

Free

cybersecurity neo4j python

YETI

0 (0)

Proof-of-concept implementation of TAXII services for developers and non-developers.

Threat Management

Free

cybersecurity infosec python taxii django proof-of-concept

RedHunt Linux Distribution (VM) v2

0 (0)

A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.

Threat Management

Free

osint red-team security-testing threat-intelligence incident-response threat-hunting