Useful Yara rules that I made/use.
-
Updated
Jul 13, 2021 - YARA
#
packer-detection
Here are 4 public repositories matching this topic...
Static PE malware analysis engine and explainable verdicts without execution
entropy static-analysis dfir malware-analysis yara security-tools threat-intelligence malware-detection pe-analysis packer-detection
-
Updated
May 16, 2026
PE (Windows executable) forensic analyzer — pe-core parses PE32/PE64 headers (sections, imports, entropy); pe-analysis grades MITRE-tagged anomalies (suspicious imports, packing/entropy, process-injection IOCs)
windows rust security incident-response forensics dfir malware-analysis pe portable-executable mitre-attack packer-detection rust-forensics
-
Updated
Jun 9, 2026 - Rust
纯 Python PE 文件结构异常扫描器 | Pure-Python PE structural anomaly scanner - packer detection, RWX scan, entropy analysis
-
Updated
May 5, 2026 - Python
Improve this page
Add a description, image, and links to the packer-detection topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the packer-detection topic, visit your repo's landing page and select "manage topics."