Skip to content

Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence, research and analytics.

License

Notifications You must be signed in to change notification settings

rapid7/Rapid7-Labs

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

99 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Rapid7 Labs Repository

Introduction

This repository contains a curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) shared by Rapid7 Labs. These resources are part of our ongoing efforts to enhance cybersecurity awareness and defense strategies.

About Rapid7 Labs

Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence, research and analytics.

Table of Contents

  1. Getting Started
  2. Usage
  3. Contribution Guidelines
  4. License

Getting Started

To get started with the Yara & Sigma rules in this repository, follow these steps:

  1. Clone the Repository:

    git clone https://github.com/rapid7/Rapid7-Labs.git
  2. Explore IOC, Yara,and Sigma Rules: Browse through the various IOCs, Yara,and Sigma rules available in the repository. Each rule is designed to identify specific malware characteristics.

Usage

Currently, this repository offers:

  • Sigma Rules: Detailed Sigma rules for threat detection. See Sigma folder.
  • Yara Rules: Yara rules for identifying malware patterns. See Yara folder.
  • Indicators of Compromise: A comprehensive list of IOCs associated with various threats. See IOCs folder.

Contribution Guidelines

We welcome contributions from community to enhance and expand the Yara rule set. To contribute:

  1. Fork the repository.
  2. Create a new branch for your changes.
  3. Make your changes and ensure they align with the contribution guidelines.
  4. Submit a pull request for review.

License

This repository is licensed under the MIT License. By contributing to this project, you agree to the terms and conditions outlined in the license.


Thank you for using the Rapid7 Labs Repository. If you have any questions or issues, feel free to open an issue or reach out to the repository maintainers. Happy hunting!

About

Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence, research and analytics.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published