Yara-Rules Repository Logo

Yara-Rules Repository

0
Free
Visit Website

Repository of YARA rules to accompany the Trellix ATR blogposts & investigations. We endorse contributing to improve our rules - please send us a pull request with your proposal. In case you discovered a false positive with our rules, please share with us your details in an issue report and we’ll try to improve our Yara rules. Happy Hunting!

FEATURES

ALTERNATIVES

Yara module for Node.js

A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

A command-line utility for examining Objective-C runtime information in Mach-O files and generating class declarations.

RABCDAsm is a collection of utilities for ActionScript 3 assembly/disassembly and SWF file manipulation.

Tplmap is a tool for detecting and exploiting server-side template injection vulnerabilities.

Interactive incremental disassembler with data/control flow analysis capabilities.

A tool for reading Portable Executable (PE) files with detailed information about the file structure.

A multithreaded YARA scanner for incident response or malware zoos.

PINNED