BinaryAlert
A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.
A simple program to manage your yara ruleset in a database. By default sqlite will be used, but using MySQL/MariaDB or Postgres is also possible. Todos Implement backup and sharing possibilities. Yara Manager creates a fresh config if none exists. If you update from an older version, please pay attention to freshly added config options. You can reset your configuration using ym config reset, however, this will also overwrite any custom changes you made. The most important configuration to change is probably your editor. The default configuration uses codium -w for opening rules. You can use e.g. EDITOR=vim DISABLE_STATUS=1 ym config edit to open your config in Vim (and you can type :w to save and :q to quit).
A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.
A tool for translating Dalvik bytecode to Java bytecode for analyzing Android applications.
OCyara performs OCR on image files and scans them for matches to Yara rules, supporting Debian-based Linux distros.
A collection of Yara signatures for identifying malware and other threats
YARA is a tool for identifying and classifying malware samples based on textual or binary patterns.
A payload creation framework for the retrieval and execution of arbitrary CSharp source code.