RussianPanda95/Yara-Rules
GitHub: RussianPanda95/Yara-Rules
一份覆盖多款流行窃取器与远控木马的Yara规则集合,用于提升威胁检测与情报分析效率。
Stars: 146 | Forks: 15
### Yara 规则适用于:
- **Aurora Stealer**
- **Bandit Stealer**
- **Ducktail**
- **Meduza Stealer**
- **MetaStealer**
- **Nitrogen**
- **PSWSTEALER**
- **RaccoonStealerv2**
- **SolarMarker**
- **Vidar Stealer**
- **WhiteSnake Stealer**
- **SwaetRAT**
- **DanaBot**
- **FakeBat**
- **Ande Loader**
- **WorkersDevBackdoor**
- **Pure Logs Stealer**
- **PikaBot**
- **JinxLoader**
- **GaryStealer**
- **Illyrian Stealer**
- **PureCrypter**
- **Prysmax Stealer**
- **Base64 混淆**
- **SmartApeSG**
- **PowerShell 特殊字符混淆**
- **Atomic Stealer**
- **Neptune Loader**
- **FenixBotnet**
- **XRed Backdoor**
- **virusloader**
- **SentinelStealer**
- **ZharkBot**
- **NarniaRAT**
- **AsukaStealer**
- **CleanUpLoader**
- **D3F@ck Loader**
- **RustyDropper**
- **MpxDropper**
- **Zloader**
- **GlorySprout**
- **GoBitLoader**
- **Koi Stealer**
- **Koi Loader**
标签:DNS 反向解析, YARA, 云资产可视化, 威胁情报, 安全, 开发者工具, 恶意软件检测, 特征码, 网络信息收集, 超时处理, 配置审计