spyre
IOC Scanner
A modular host-based IOC scanner built around YARA pattern matching engine
simple YARA-based IOC scanner
164 stars
12 watching
27 forks
Language: Go
last commit: 12 months ago
Linked from 2 awesome lists
gogolanghacktoberfestincident-responseioclinuxmacosmacosxscannersecuritywindowsyarayara-scanner
meirwah/awesome-incident-response
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
 mtnmunuklu/alterix | Converts detection rules and IOCs to be usable with a proprietary SIEM product | 15 |
 eset/malware-ioc | A repository of malware indicators and rules for threat hunting and analysis. | 1,698 |
 virustotal/yara | Tool to create and match patterns for identifying malware samples | 8,370 |
 neo23x0/fenrir | A simple Bash script to scan Linux/Unix systems for Indicators of Compromise (IOCs) without installing additional software or agents. | 702 |
 gosecure/malware-ioc | Provides a set of standardized indicators to help detect and assess malware presence | 10 |
 hillu/go-yara | A library providing Go bindings for YARA's pattern matching API. | 361 |
 michelcrypt4d4mus/yaralyzer | Analyzes binary and text data for YARA and regex matches, visualizes results with colors, and attempts to decode matched regions | 109 |
 northern-lights/yara-parser | A Go library for manipulating YARA rulesets using the same grammar and lexer as the original libyara. | 82 |
 bandrel/ocyara | Performs OCR on images and scans them for matches to Yara rules | 40 |
 ace-ecosystem/yara_scanner | A Python wrapper around libyara that provides scanning capabilities with customizable options and distributed multi-core processing. | 18 |
 g-les/yara-pe-features | A presentation project showcasing how to quickly analyze executable files using YARA and PE features | 4 |
 strangerealintel/dailyioc | Automated threat intelligence collection from articles and tweets, utilizing YARA patterns | 312 |
 sophoslabs/iocs | A collection of compiled indicators-of-compromise from published reports, designed to aid in threat detection and analysis. | 547 |
 codewatchorg/burp-yara-rules | Provides Yara rules to identify malicious software in web applications | 44 |
 techbliss/yara_mailware_quick_menu_scanner | A utility that integrates Yara pattern scanning into Windows' right-click menu, allowing users to scan files and folders for malware patterns. | 35 |