Map ATT&CK Signatures to YARA Rules

vipyrsec / dragonfly

A combined C2 and malware scanning service focused on the early identification, analysis, and reporting of malicious packages on the Python Package Index

MIT License

0 stars 0 forks source link

Map ATT&CK Signatures to YARA Rules #4

Closed import-pandas-as-numpy closed 1 year ago

import-pandas-as-numpy commented 1 year ago

A more responsible way to document information found is to map it against ATT&CK behavior for a more refined classification.