ConventionEngine

PDB path detector

Detects and identifies suspicious PDB paths in malware files using Yara rules.

ConventionEngine - A Yara Rulepack for PDB Path Hunting

37 stars

2 watching

9 forks

Language: YARA

last commit: over 1 year ago

Linked from 1 awesome list

Backlinks from these awesome lists:

inquest/awesome-yara

Related projects:

Repository	Description	Stars
securitymagic/yara	A collection of YARA rules for detecting malware and suspicious activity in various environments.	11
dissectmalware/yaradbg-backend	An application backend designed to facilitate Yara rule analysis and root cause identification in malware detection.	24
neo23x0/rules	A centralized repository of Yara rules for detecting malware and other malicious activities.	10
bartblaze/yara-rules	A collection of Yara rules for detecting malware and other threats	327
xen0ph0n/yaragenerator	Automates the creation of Yara rules to detect malware and other malicious objects of interest by analyzing sample files from various sources.	332
citizenlab/malware-signatures	Yara rules for identifying malware families in targeted threats	134
h3x2b/yara-rules	Rules and patterns used to identify malicious software	23
inquest/threatkb	Manages YARA rules and C2 artifacts in a knowledge base workflow	96
jipegit/yara-rules-public	A collection of Yara rules for detecting malicious code and behavior	11
mikesxrs/open-source-yara-rules	A collection of YARA rules for detecting malicious code patterns	334
kevthehermit/yararules	A collection of Yara rules for detecting malware and other malicious patterns	52
codewatchorg/burp-yara-rules	Provides Yara rules to identify malicious software in web applications	44
dissectmalware/yaradbg-frontend	A web application for analyzing Yara rules and inspecting malware files	37
deepfence/yarahunter	Automated malware scanning tool for containers and filesystems using YARA ruleset	1,268
rpgeeganage/audit-node-modules-with-yara	A tool to scan node modules for malicious scripts by applying YARA rules	20