Skip to content
This repository has been archived by the owner on Nov 23, 2024. It is now read-only.
/ yara-rules Public archive

Collection of YARA signatures from individual research

License

Notifications You must be signed in to change notification settings

deadbits/yara-rules

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

53 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Say Thanks

yara-rules

Collection of YARA signatures from recent malware research

Ruleset

Dacls Trojan

APT32 KerrDown


ACBackdoor - Linux build


Unnamed Linux Golang Ransomware


KPOT v2


WatchBog Linux botnet


EvilGnome Linux malware


APT34 PICKPOCKET


APT34 LONGWATCH


APT34 VALUEVAULT


RedGhost Linux tool


SilentTrinity


DNSpionage


TA505 FlowerPippi


REMCOS RAT


GodLua Linux Backdoor


APT32 Ratsnif


OSX/CrescentCore

side note: when will we all decide to change mac sig names to macOS/? its way past time, imho


WarZone RAT aka Ave Maria Stealer


Winnti Linux