What is the pricing for Yara Decompressor?

Yara Decompressor is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/rjzak/decompressingyara/ for download and installation instructions.

What are alternatives to Yara Decompressor?

Popular alternatives to Yara Decompressor include: 1. Red Hand Analyzer - Red Hand Analyzer is an online tool that provides automated behavioral analysis of PCAP files to detect malicious network activities and security vulnerabilities without decrypting traffic content. (Free) 2. iLEAPP - A forensic analysis tool that extracts and parses logs, notifications, and system information from iOS/iPadOS devices and backups. (Free) 3. HexPrism - HexPrism is a fast, privacy-first hex editor built for CTFs and digital forensics. (Free) 4. Kanvas - An open-source incident response case management tool that provides visualization, threat intelligence lookups, and security framework mapping in a unified workspace. (Free) 5. yextend - yextend extends Yara's functionality by automatically handling archived and compressed content inflation, enabling pattern matching on files buried within multiple layers of archives. (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use Yara Decompressor?

Yara Decompressor is for security teams and organizations that need Security Analysis, Digital Forensics, Malware, Golang, Malware Analysis. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

Yara Decompressor

A tool that enables Yara rule execution against compressed malware samples, supporting GZip, BZip2, and LZMA formats without manual decompression.

Security Operations Open Source

Visit website

Yara Decompressor

A tool that enables Yara rule execution against compressed malware samples, supporting GZip, BZip2, and LZMA formats without manual decompression.

Security Operations•Digital Forensics and Incident Response

Open Source

Security Analysis Digital Forensics Malware

7stars

GitHub Stars

24 Apr

Last commit

Visit Website

Updated 30 Dec 25

API Access

Build Market Maps, Track Competitors, Monitor Vendors

One API for the largest cybersecurity database. Over 450+ data points per product and company. Updated regularly.

Request Access

Yara Decompressor Description

Yara Decompressor is a specialized tool designed to run Yara rules against compressed malware samples without requiring manual decompression. The tool supports multiple compression formats including GZip, BZip2, and LZMA (XZ). Built using Go-Yara and XZ modules, the tool is statically compiled against libyara for portability and ease of deployment. It operates by processing rule files against directories containing compressed malware samples, automatically handling the decompression process during analysis. The tool addresses the common challenge faced by malware analysts who need to test Yara rules against compressed samples on systems with varying Yara installations. Currently, it processes rule files against entire directories of files in a batch operation. Future development plans include expanding support for additional archive formats such as Zip and Tar files, as well as handling password-protected Zip and 7z archives with common password testing capabilities.

Yara Decompressor Description

Yara Decompressor FAQ

Common questions about Yara Decompressor including features, pricing, alternatives, and user reviews.

Yara Decompressor is A tool that enables Yara rule execution against compressed malware samples, supporting GZip, BZip2, and LZMA formats without manual decompression.. It is a Security Operations solution designed to help security teams with Security Analysis, Digital Forensics, Malware.

Have more questions? Browse our categories or search for specific tools.