InQuest / awesome-yara

A curated list of awesome YARA rules, tools, and people.
Other
3.55k stars 487 forks source link
awesome awesome-list awesome-yara ioc malware-analysis malware-detection malware-research malware-rules threat-hunting yara yara-manager yara-rules yara-scanner yara-signatures

Awesome YARA

Awesome YARA

A curated list of awesome YARA rules, tools, and resources. Inspired by awesome-python and awesome-php.

YARA is an ancronym for: YARA: Another Recursive Ancronym, or Yet Another Ridiculous Acronym. Pick your choice.

-- Victor M. Alvarez (@plusvic)

YARA, the "pattern matching swiss knife for malware researchers (and everyone else)" is developed by @plusvic and @VirusTotal. View it on GitHub.

Contents

Legend

100 Days of YARA (#100DaysofYARA)

An annual YARA challenge started by Greg Lesnewich in 2022, inspired by #100DaysOfCode and taking place in the first 100 days of the year. The goal is to contribute daily to the YARA community through rule creation, source code contributions, or generally teaching/help your colleagues. Other key contributors include Wesley Shields and Steve Miller. For a list of all participants in the first two years of the challenge, see our Twitter List.

Rule collections from prior years of the challenge: 100 Days of YARA

Guides

Rules

Tools

Services

Syntax Highlighters

People

We're aggregating the Twitter handles for anyone involved with the projects on this page into a single list: awesome-yara Twitter list. Do let us know if anyone is missing.

Videos and Talks

Related Awesome Lists

Contributing

This list is maintained by InQuest. Feel free to let us know about anything we're missing!

See CONTRIBUTING.md.

Contributors

awesome-yara contributors