Loki
IoC Scanner
A Python-based tool for detecting and analyzing simple indicators of compromise (IOCs) using various detection methods including YARA rules, file name checks, and hash comparisons.
Loki - Simple IOC and YARA Scanner
3k stars
184 watching
583 forks
Language: Python
last commit: 22 days ago
Linked from 6 awesome lists
antivirusdfirhashiocotxpythonscannersignatureyarayara-rules
sbilly/awesome-security
rshipp/awesome-malware-analysis
hslatman/awesome-threat-intelligence
meirwah/awesome-incident-response
cugu/awesome-forensics
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
| neo23x0/signature-base | A repository of YARA rules and IOCs for threat hunting and intelligence | 2,484 |
 numlock15/yarastation | A centralized management portal for Loki scanner and Yara rules | 36 |
| neo23x0/fenrir | A simple Bash script to scan Linux/Unix systems for Indicators of Compromise (IOCs) without installing additional software or agents. | 697 |
 projectdiscovery/nuclei | A vulnerability scanner built on YAML templates to identify weaknesses in applications and networks. | 20,687 |
 spyre-project/spyre | A modular host-based IOC scanner built around YARA pattern matching engine | 164 |
| neo23x0/yaranalyzer | Analyzes and reports on Yara rules and files | 359 |
 hasherezade/pe-sieve | A tool for detecting and analyzing malicious code in executables | 3,103 |
| neo23x0/rules | A centralized repository of Yara rules for detecting malware and other malicious activities. | 10 |
 cloudlinux/kcare-uchecker | Detects outdated shared libraries linked to processes in memory and provides suggestions for updating them. | 184 |
 yara-rules/rules | A repository of Yara rules for detecting malware and other security threats | 4,178 |
 techfort/lokijs | A JavaScript-based document-oriented in-memory database with features like indexing and views for fast data access, suitable for performance-critical applications and client-side storage. | 6,752 |
 grafana/loki | A log aggregation system inspired by Prometheus, designed to be cost-effective and easy to operate. | 23,926 |
 stellarbear/yarasharp | A C# wrapper around the Yara pattern matching library for detecting malware and analyzing binaries | 36 |
 techbliss/yara_mailware_quick_menu_scanner | A utility that integrates Yara pattern scanning into Windows' right-click menu, allowing users to scan files and folders for malware patterns. | 35 |
 abhinavbom/clara | Scans S3 buckets for malware using ClamAV and Yara signatures in real-time | 32 |