factual-rules-generator
Software identifier
Generates YARA rules to identify installed software on a machine based on collected digital forensic evidence
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
76 stars
10 watching
6 forks
Language: Python
last commit: about 3 years ago
Linked from 1 awesome list
computer-forensicsdfiryarayara-rules
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
| circl/yara-validator | Validates Yara rules and tries to repair broken ones | 39 |
 sophos/yaraml_rules | Automates the creation of Yara rules from machine learning models trained on malware and benign samples. | 214 |
 yara-silly-silly/yarasilly2 | Automatically generates YARA rules from sample files for malware analysis | 28 |
 neo23x0/yargen | Generates YARA rules from malware strings while excluding goodware strings and optionally refines the rules for AI use. | 1,569 |
 jimmy-sonny/yayagen | An automatic procedure to generate YARA rules from a set of malware reports | 62 |
 nccgroup/yaml2yara | Automated generation of YARA rules from YAML input data | 22 |
 cyberdefenses/cdi_yara | A collection of YARA rules based on intelligence profiles and file work. | 19 |
 imp0rtp3/yara-rules | A repository of custom Yara rules for malware analysis and threat intelligence | 18 |
 xen0ph0n/yaragenerator | Automates the creation of Yara rules to detect malware and other malicious objects of interest by analyzing sample files from various sources. | 332 |
 securitymagic/yara | A collection of YARA rules for detecting malware and suspicious activity in various environments. | 11 |
 futurecomputing4ai/autoyara | Automated rule generation tool for malware analysis using biclustering algorithm | 61 |
 tenable/yara-rules | A curated collection of YARA rules for identifying and flagging malicious code and behavior. | 60 |
 intezer/yara-rules | A repository of pre-defined YARA rules for detecting malware and other malicious software | 126 |
 jipegit/yara-rules-public | A collection of Yara rules for detecting malicious code and behavior | 11 |
 codewatchorg/burp-yara-rules | Provides Yara rules to identify malicious software in web applications | 44 |