YaraPcap
HTTP scanner
A tool that extracts HTTP streams from PCAP files and scans them with YARA for malware detection
Process HTTP Pcaps With YARA
101 stars
11 watching
25 forks
Language: Python
last commit: over 11 years ago
Linked from 1 awesome list
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
| kevthehermit/yaramail | Automates the scanning of email attachments with Yara rules for malware detection | 28 |
| kevthehermit/pastehunter | Automates scanning of publicly hosted pasted data against Yara rules to identify potential security or research threats. | 1,069 |
 ramadhanamizudin/python-icap-yara | An ICAP server with a YARA scanner for URL and content analysis | 57 |
| kevthehermit/yararules | A collection of Yara rules for detecting malware and other malicious patterns | 52 |
 virustotal/yara | Tool to create and match patterns for identifying malware samples | 8,370 |
 jheise/yarascanner | A web service for scanning files with Yara rules to detect malware and other threats | 27 |
| virustotal/yara-python | A Python interface to use YARA's features from Python programs | 665 |
 hestat/lw-yara | A Yara ruleset and scanner tool for detecting webserver malware on Linux servers. | 102 |
 codewatchorg/burp-yara-rules | Provides Yara rules to identify malicious software in web applications | 44 |
 sh3llyr/yarascanparser | A tool to parse JSON output from Yara Scan Service's malware analysis and extract relevant information for rule optimization. | 11 |
 anyrun/yara | A collection of YARA rules designed to identify known malware and threats | 15 |
 diablohorn/yara4pentesters | A tool to identify files containing sensitive information using YARA rules | 125 |
 ace-ecosystem/yara_scanner | A Python wrapper around libyara that provides scanning capabilities with customizable options and distributed multi-core processing. | 18 |
 yara-rules/yara-endpoint | A tool used to scan files and assets for malware using Yara signatures, offering incident response capabilities. | 104 |
 cert-polska/mquery | A web-based Yara query accelerator for malware analysis and digital forensics | 417 |