This project, released under the AGPL license by NCC Group Plc and developed by David Cannings, contains a script that generates custom detection rules from YAML input, allowing for easy updating and optimization of bulk rules to take advantage of new YARA features. It aims to store data in a human-readable format, generate rules effortlessly, and produce output compatible with source code management tools like Git and Mercurial.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A platform providing real-time threat intelligence streams and reports on internet-exposed assets to help organizations monitor and secure their attack surface.
A comprehensive Threat Intelligence Program Management Solution for managing the entire CTI lifecycle.
Search engine for Windows executable files and hashes, providing insights into file prevalence, behavior, and security information.
FraudGuard is a service that provides real-time internet traffic analysis and IP tracking to help validate usage and prevent fraud.
An all-in-one email outreach platform for finding and connecting with professionals, with features for lead discovery, email verification, and cold email campaigns.
Malware Patrol offers a range of threat intelligence solutions, including enterprise data feeds, DNS firewall, phishing threat intelligence, and small business protection.
VX-Underground is a vast online repository of malware samples, featuring various collections for cybersecurity professionals and researchers to analyze and combat cyber threats.
In-depth threat intelligence reports and services providing insights into real-world intrusions, malware analysis, and threat briefs.
ThreatMiner is a threat intelligence portal that aggregates data from various sources and provides contextual information related to indicators of compromise (IOCs).
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.