Hyara Logo

Hyara

0
Free
Visit Website

Hyara is a plugin that provides convenience when writing YARA rules. When running Hyara, it docks itself to the right and the output window to the left, allowing users to specify addresses, view results, save results, clear rules, modify values to wildcards, export YARA rules, select start or end addresses, annotate instructions, add rich header and imphash matching, extract strings, and install in IDA Pro & BinaryNinja.

FEATURES

ALTERNATIVES

Repository of scripts, signatures, and IOCs related to various malware analysis topics.

Yara mode for GNU Emacs to edit Yara related files

A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.

A static analysis tool for PE files that detects malicious behavior and provides information for manual analysis.

A Unix-based tool that scans for rootkits and other malware on a system, providing a detailed report of the scan results.

A Scriptable Android Debugger for reverse engineers and developers.

Repository of YARA rules for Trellix ATR blogposts and investigations

Java decompiler for modern Java features up to Java 14.