Skip to content

Detection in the form of Yara, Snort and ClamAV signatures.

License

Notifications You must be signed in to change notification settings

Avalon-Group/detection

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Detection and Hunting Signatures

A set of interrelated network and host detection rules with the aim of improving detection and hunting visibility and context. Where applicable, each Snort rule includes metadata indicating the corresponding Yara and ClamAV rules, and each Yara signature also includes metadata to the corresponding Snort and ClamAV rules, and so on.

Supported Rules

Currently, Snort, Yara and ClamAV rules are supported. Additional singatures and formats are work in progress.

Scripts

Currently, only scripts available are used to aid in auto-generation of hash-based and certificate-based Yara rules.

About

Detection in the form of Yara, Snort and ClamAV signatures.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • YARA 98.8%
  • Python 1.2%