YARA Silly Silly

A collection of Yara rules for detecting malware evasion techniques

A Semi-Automatic Tool for Generating YARA Rules

This semi-automatic tool is designed to generate YARA rules from sample virus files (work in progress) for Malware Analysts. It is inspired by the DIFF function available in a VirusTotal Premium Account. To use this tool, Python3 is required. Start by cloning the Git repository and navigate into the folder. Next, create and activate a virtual environment. Depending on your operating system, install ssdeep. You can view all the options available for the application by running python yarasilly2.py --help. Additionally, configuration settings for the application can be found in the config.ini file located in the root folder.

Other AI Tools

Proxmark 3

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang for efficient and secure communication.

Details

Preparing for Red Team at PRCCDC 2015

Emulates Docker HTTP API with event logging and AWS deployment script.

Details

Practical Guide to NTLM Relaying in 2017

FOCA is a tool used to find metadata and hidden information in scanned documents, with capabilities to analyze various file types and extract EXIF information.

Details

Project Zero iPhone Messaging Tools

MiniCPS is a framework for Cyber-Physical Systems real-time simulation with support for physical process and control devices simulation, and network emulation.

Details

Projectdiscovery.io | Chaos

FOCA is a tool used to find metadata and hidden information in scanned documents, with capabilities to analyze various file types and extract EXIF information.

Details