Yara-Unprotect Logo

Yara-Unprotect

0
Free
Visit Website

This repository regroups the Yara Rules created for the Unprotect Project and for detecting the malware evasion techniques. Some rules are comming from https://github.com/Yara-Rules/rules/tree/master/Antidebug_AntiVM with an improvement and some modification. This repository provides a collection of Yara rules for detecting malware evasion techniques. The rules are designed to detect various evasion techniques used by malware to avoid detection. This repository is a valuable resource for security researchers and analysts to improve their malware detection capabilities. The rules are regularly updated to ensure they remain effective against the latest malware threats. This repository is a great resource for anyone working in the field of malware analysis and detection.

FEATURES

ALTERNATIVES

A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.

Yabin creates Yara signatures from malware to find similar samples.

DOM XSS scanner for Single Page Applications

A yara module for searching strings inside zip files

PinCTF is a tool for using Intel's Pin Tool to instrument reverse engineering binaries and count instructions.

Interactive incremental disassembler with data/control flow analysis capabilities.

A simple framework for extracting actionable data from Android malware

A strings statistics calculator for YARA rules to aid malware research.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved