dnYara Logo

dnYara

0
Free
Visit Website

dnYara is a .Net wrapper library for the native Yara library. Unlike other wrappers for .Net which are statically linked managed C++ wrappers, dnYara has been made in C# for .Net Standard 2.0, ensuring interoperability and portability for various .Net applications and operating systems. YARA is an open-source tool developed to help malware researchers quickly identify and classify malware samples by creating pattern-based rules to scan malwares and describe malware families based on text or binary patterns.

FEATURES

ALTERNATIVES

A disassembly framework with support for multiple hardware architectures and clean API.

A program to extract IOCs from text files using regular expressions

Generates a YARA rule to match basic blocks of the current function in IDA Pro

Guide on emulating Raspberry Pi with QEMU and exploring Arm TrustZone research.

A library for checking potentially malicious files and archives using YARA and making a decision about their harmfulness.

A generator for YARA rules that creates rules from strings found in malware files while removing strings from goodware files.

A Django web interface for managing Yara rules with features like search, categorization, and bulk edits.

PinCTF is a tool for using Intel's Pin Tool to instrument reverse engineering binaries and count instructions.