RussianPanda95/Yara-Rules

GitHub: RussianPanda95/Yara-Rules

一份覆盖多款流行窃取器与远控木马的Yara规则集合,用于提升威胁检测与情报分析效率。

Stars: 146 | Forks: 15

### Yara 规则适用于: - **Aurora Stealer** - **Bandit Stealer** - **Ducktail** - **Meduza Stealer** - **MetaStealer** - **Nitrogen** - **PSWSTEALER** - **RaccoonStealerv2** - **SolarMarker** - **Vidar Stealer** - **WhiteSnake Stealer** - **SwaetRAT** - **DanaBot** - **FakeBat** - **Ande Loader** - **WorkersDevBackdoor** - **Pure Logs Stealer** - **PikaBot** - **JinxLoader** - **GaryStealer** - **Illyrian Stealer** - **PureCrypter** - **Prysmax Stealer** - **Base64 混淆** - **SmartApeSG** - **PowerShell 特殊字符混淆** - **Atomic Stealer** - **Neptune Loader** - **FenixBotnet** - **XRed Backdoor** - **virusloader** - **SentinelStealer** - **ZharkBot** - **NarniaRAT** - **AsukaStealer** - **CleanUpLoader** - **D3F@ck Loader** - **RustyDropper** - **MpxDropper** - **Zloader** - **GlorySprout** - **GoBitLoader** - **Koi Stealer** - **Koi Loader**
标签:DNS 反向解析, YARA, 云资产可视化, 威胁情报, 安全, 开发者工具, 恶意软件检测, 特征码, 网络信息收集, 超时处理, 配置审计