Yara Manager Logo

Yara Manager

0
Free
Visit Website

A simple program to manage your yara ruleset in a database. By default sqlite will be used, but using MySQL/MariaDB or Postgres is also possible. Todos Implement backup and sharing possibilities. Yara Manager creates a fresh config if none exists. If you update from an older version, please pay attention to freshly added config options. You can reset your configuration using ym config reset, however, this will also overwrite any custom changes you made. The most important configuration to change is probably your editor. The default configuration uses codium -w for opening rules. You can use e.g. EDITOR=vim DISABLE_STATUS=1 ym config edit to open your config in Vim (and you can type :w to save and :q to quit).

FEATURES

ALTERNATIVES

A yara module for searching strings inside zip files

A library for checking potentially malicious files and archives using YARA and making a decision about their harmfulness.

Dynamic binary analysis library with various analysis and emulation capabilities.

A dataset release policy for the Android Malware Genome Project, requiring authentication and justification for access to the dataset.

A command-line program for finding secrets and sensitive information in textual data and Git history.

Joe Sandbox Community provides automated cloud-based malware analysis across multiple OS platforms.

VolatilityBot automates binary extraction and memory analysis, including detecting code injections and strings.

Interactive incremental disassembler with data/control flow analysis capabilities.