Signature-Base Logo

Signature-Base

0
Free
Visit Website

Signature-Base is the YARA signature and IOC database for our scanners LOKI and THOR Lite. It provides high quality YARA rules and IOCs with minimal false positives, clear structure, consistent rule format, and external variables in YARA rules. The database includes directories for IOC files, YARA rules, threat intelligence API receiver, and other input files.

FEATURES

ALTERNATIVES

Parse IOCs from text

Automatic YARA rule generator based on Koodous reports with limited false positives.

A collection of YARA rules for Windows, Linux, and Other threats.

A database of Tor exit nodes with their corresponding IP addresses and timestamps.

A container of PCAP captures mapped to the relevant attack tactic

A library of event-based analytics written in EQL to detect adversary behaviors, now integrated into the Detection Engine of Kibana.

A collection of APT and cybercriminals campaigns with various resources and references.

An open source threat intelligence platform for storing and managing cyber threat intelligence knowledge.

PINNED