NodeYara Logo

NodeYara

0
Free
Visit Website

This module implements YARA bindings for Node.js. This module is supported on Linux and MacOS (using homebrew) platforms only. This module uses the installed version of libyara. You should download, compile and install your preferred version, or use one of the following commands using your system package manager: # CentOS/Red Hat sudo yum install yara-devel # Debian/Ubuntu sudo apt-get install libyara-dev # MacOS (using homebrew) sudo brew install yara This module is installed using node package manager (npm): # This module contains C++ source code which will be compiled # during installation using node-gyp. A suitable build chain # must be configured before installation. npm install yara It is loaded using the require() function: var yara = require("yara") Following initialisation of this module Scanner objects can then be created, and content scanned using YARA rules: yara.initialize(function(error) { if (error) { console.error(error.message) } else { var rule_string = [ "rule is_good {", " condition:", " true", "}" ].join("\n") var rules = [ {filename: "rules.yara"}, {string: rule_string} ] var scanner = yara.createScanner() scanner.configure({rules: rules}, function(error,

FEATURES

ALTERNATIVES

angr is a Python 3 library for binary analysis with various capabilities like symbolic execution and decompilation.

A Python library for automating time-based blind SQL injection attacks

YARA is a tool for identifying and classifying malware samples based on textual or binary patterns.

A backend agnostic debugger frontend for debugging binaries without source code access.

A tool that scans a corpus of malware and builds a YARA rule to detect similar code sections.

A collection of Yara rules for identifying malicious PEs with unique or suspicious PDB paths.

TeamTNT is modifying its malicious shell scripts after they were made public by security researchers.

Discontinued project for file-less persistence, attacks, and anti-forensic capabilities on Windows 7 32-bit systems.