YARA Logo

YARA

0
Free
Visit Website

YARA is a tool aimed at helping malware researchers to identify and classify malware samples by creating descriptions of malware families based on textual or binary patterns through rules consisting of strings and boolean expressions. It allows for the creation of complex rules using wild-cards, case-insensitive strings, regular expressions, and special operators.

FEATURES

ALTERNATIVES

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

A web-based manager for Yara rules, allowing for storage, editing, and management of Yara rules.

A collection of publicly available YARA rules for detecting and classifying malware.

Explores malware interaction with Windows API and methods for detection and prevention.

YARA syntax highlighting for Gtk-based text editors

A tool for translating Dalvik bytecode to equivalent Java bytecode, allowing Java analysis tools to analyze Android applications.

A deserialization payload generator for .NET formatters

A collection of Android Applications with malware analysis results

PINNED