Latest YARA related posts with mentions of open-source projects

Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

6 projects | news.ycombinator.com | about 2 months ago
Bincapz: Enumerate binary capabilities, including malicious behaviors

1 project | news.ycombinator.com | 2 months ago
When does an old iPhone become unsafe to use?

1 project | news.ycombinator.com | 8 months ago
macos-ttps-yara: A ruleset to find potentially malicious code in macOS malware samples

1 project | /r/blueteamsec | 9 months ago
LOLBAS: Living Off the Land Binaries, Scripts and Libraries

1 project | /r/hacking | 11 months ago
A collection of various SIEM rules relating to malware family groups

1 project | /r/purpleteamsec | 11 months ago
Lolbas: Living Off the Land Binaries, Scripts and Libraries

2 projects | news.ycombinator.com | 11 months ago
Malleable-CS-Profiles: A list of python tools to help create an OPSEC-safe Cobalt Strike profile

1 project | /r/OSINT | 11 months ago
2023-06-01 // SITUATIONAL AWARENESS // Active Intrusion Campaigns Targeting MoveIt File Transfer Software

1 project | /r/crowdstrike | 12 months ago
Chinese hacker, Volt Typhoon, breach US critical infrastructure in stealthy attacks

1 project | /r/hacking | 12 months ago
(Exhaustive) list of remote access tools

1 project | /r/msp | about 1 year ago
Is this a false positive?

1 project | /r/antivirus | about 1 year ago
Cerebro: Scripts and lists to help generate YARA friendly string mutations

1 project | /r/blueteamsec | about 1 year ago
Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook

1 project | /r/u_Tsofmetasploit | about 1 year ago
Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook

1 project | /r/blueteamsec | about 1 year ago
GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

1 project | /r/cybersecurity | over 1 year ago
Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.

1 project | /r/CKsTechNews | over 1 year ago
GitHub - Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

1 project | /r/netsec | over 1 year ago
OneNote Yara rule

1 project | /r/blueteamsec | over 1 year ago
Qu1cksc0pe - All-in-One malware analysis tool

1 project | /r/CKsTechNews | over 1 year ago
What are your go-to websites to read cybersecurity news in 2023?

1 project | /r/cybersecurity | over 1 year ago
Days of Yara Master list

6 projects | /r/blueteamsec | over 1 year ago
Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice

2 projects | /r/blueteamsec | over 1 year ago
New Exchange Zero Day rumours [29th September]

1 project | /r/msp | over 1 year ago
Company woke up this morning to a ransomware attack. Infected every computer connected to the network and all virtual servers, including a backup server isolated from the main network. Any advice on looking for its entry point?

1 project | /r/cybersecurity | over 1 year ago
Završio/la si TVZ? Još sutra traju prijave za networking događaj Alumnijada 2022 (četvrtak 29.9.2022.)

1 project | /r/CroIT | over 1 year ago
What is your opinion about "app packers"? Should Google ban their use?

1 project | /r/androiddev | over 1 year ago
[P] I developed a machine learning based malware classification system

1 project | /r/MachineLearning | over 1 year ago
What is the use of an Av when it can be bypassed easily?

1 project | /r/antivirus | over 1 year ago
Radi li iko u cybersecurity sektoru?

1 project | /r/CroIT | almost 2 years ago
protections-artifacts: 1000 Yara rules and 200 endpoint behaviour rules released for free

1 project | /r/blueteamsec | almost 2 years ago
Yara4Ida IDA plugin - Crypto/hash/encryption dumper

1 project | /r/ReverseEngineering | almost 2 years ago
Open source tools and DFIR Tryhackme equivalents

1 project | /r/computerforensics | almost 2 years ago
FBI Director Christopher Wray says agency blocked planned cyberattack on children's hospital

1 project | /r/technews | almost 2 years ago
Yara which Detects DLL dropped by Raspberry Robin.

1 project | /r/blueteamsec | about 2 years ago
Where do I find at least somewhat detailed information about famous data breaches/Hacks?

1 project | /r/cybersecurity | about 2 years ago
Python Script EXE detected as virus in VT

1 project | /r/Python | about 2 years ago
IoCs and YARA rules for Industroyer2

1 project | /r/blueteamsec | about 2 years ago
What are some good resources for staying up to date with current APT developments?

1 project | /r/cybersecurity | about 2 years ago
Russia-Ukraine Cyberwar 2022

2 projects | /r/ukraine | about 2 years ago
Ukraine curated cyber intel

1 project | /r/OpUkraine | about 2 years ago
GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

1 project | /r/devopsish | about 2 years ago
Ukraine Cyber Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.

1 project | /r/blueteamsec | about 2 years ago
Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. (github/curated-intel)

1 project | /r/HackForUkraine | about 2 years ago
Collection of Ukraine related OSINT

1 project | /r/SecOpsDaily | about 2 years ago
Nvidia Breach

1 project | /r/AskNetsec | about 2 years ago
Detection - Threat Detection Rules (Snort/Sigma/Yara)

1 project | /r/CKsTechNews | about 2 years ago
GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository - detect APT10, APT29, BlackTech, Darkhotel, DragonOK, Lazarus, Tick and others

1 project | /r/blueteamsec | over 2 years ago
GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository

1 project | /r/SecOpsDaily | over 2 years ago
StrangerealIntel/Orion: A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...

1 project | /r/cyber_deception | over 2 years ago

YARA Posts

Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

Bincapz: Enumerate binary capabilities, including malicious behaviors

When does an old iPhone become unsafe to use?

macos-ttps-yara: A ruleset to find potentially malicious code in macOS malware samples

LOLBAS: Living Off the Land Binaries, Scripts and Libraries

A collection of various SIEM rules relating to malware family groups

Lolbas: Living Off the Land Binaries, Scripts and Libraries

Malleable-CS-Profiles: A list of python tools to help create an OPSEC-safe Cobalt Strike profile

2023-06-01 // SITUATIONAL AWARENESS // Active Intrusion Campaigns Targeting MoveIt File Transfer Software

Chinese hacker, Volt Typhoon, breach US critical infrastructure in stealthy attacks

(Exhaustive) list of remote access tools

Is this a false positive?

Cerebro: Scripts and lists to help generate YARA friendly string mutations

Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook

Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook

GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.

GitHub - Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

OneNote Yara rule

Qu1cksc0pe - All-in-One malware analysis tool

What are your go-to websites to read cybersecurity news in 2023?

Days of Yara Master list

Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice

New Exchange Zero Day rumours [29th September]

Company woke up this morning to a ransomware attack. Infected every computer connected to the network and all virtual servers, including a backup server isolated from the main network. Any advice on looking for its entry point?

Završio/la si TVZ? Još sutra traju prijave za networking događaj Alumnijada 2022 (četvrtak 29.9.2022.)

What is your opinion about "app packers"? Should Google ban their use?

[P] I developed a machine learning based malware classification system

What is the use of an Av when it can be bypassed easily?

Radi li iko u cybersecurity sektoru?

protections-artifacts: 1000 Yara rules and 200 endpoint behaviour rules released for free

Yara4Ida IDA plugin - Crypto/hash/encryption dumper

Open source tools and DFIR Tryhackme equivalents

FBI Director Christopher Wray says agency blocked planned cyberattack on children's hospital

Yara which Detects DLL dropped by Raspberry Robin.

Where do I find at least somewhat detailed information about famous data breaches/Hacks?

Python Script EXE detected as virus in VT

IoCs and YARA rules for Industroyer2

What are some good resources for staying up to date with current APT developments?

Russia-Ukraine Cyberwar 2022

Ukraine curated cyber intel

GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

Ukraine Cyber Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.

Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. (github/curated-intel)

Collection of Ukraine related OSINT

Nvidia Breach

Detection - Threat Detection Rules (Snort/Sigma/Yara)

GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository - detect APT10, APT29, BlackTech, Darkhotel, DragonOK, Lazarus, Tick and others

GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository

StrangerealIntel/Orion: A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...