YaraGuardian is a django web interface for managing Yara rules. It enables users to search, categorize, and organize rules, as well as track characteristics of the entire rule repository. It also provides features such as bulk edits, duplicate entry prevention, and rule stats summary. The tool comes with installation and configuration instructions, including a vagrantfile and install.sh script. The tool is designed to be highly customizable, with settings specified either via ENV variables or the config.json file.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A static analysis tool for PE files that identifies potential malicious indicators through compiler detection, packing analysis, signature matching, and suspicious string identification.
Code to prevent a managed .NET debugger/profiler from working.
A program to manage yara ruleset in a database with support for different databases and configuration options.
A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.
CAPA is a static analysis tool that detects and reports capabilities in executable files across multiple formats, mapping findings to MITRE ATT&CK tactics and techniques.