Yara Mode for GNU Emacs Logo

Yara Mode for GNU Emacs

0
Free
Visit Website

Yara mode for GNU Emacs to edit Yara related files. This mode provides syntax highlighting, indentation, and other features for editing Yara rules. How to use YARA Language Server: 1. Install the `yls` from https://github.com/avast/yls 2. Run `pip install -U yls-yara` to install the YARA Language Server. 3. Set up a custom language server in the `init.el` file. Example setup: (with-eval-after-load 'lsp-mode (add-to-list 'lsp-language-id-configuration '(yara-mode . "yara")) (lsp-register-client (make-lsp-client :new-connection (lsp-stdio-connection "yls") :activation-fn (lsp-activate-on "yara") :server-id 'yls)))

FEATURES

ALTERNATIVES

Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.

OCaml wrapper for YARA matching engine for malware identification

A collection of Android Fakebank and Tizi samples for analyzing spyware on Android devices.

Andromeda makes reverse engineering of Android applications faster and easier.

A tool for deep analysis of malicious files using ClamAV and YARA rules, with features like scoring suspect files, building visual tree graphs, and extracting specific patterns.

A yara module for searching strings inside zip files

A backend agnostic debugger frontend for debugging binaries without source code access.

A tutorial on setting up a virtual ARM environment, reversing ARM binaries, and writing basic exploits for ARM using the trafman challenge of rwthCTF as an example.