Yaramod is a library that provides parsing of YARA rules into AST and a C++ programming interface to build new YARA rulesets. This project is not associated with the YARA project. Yaramod also comes with Python bindings and this repository should be fully compatible with installation using pip. User Documentation: You can find our documentation on Read the Docs. API Documentation: You can generate the API documentation by yourself. Pass -DYARAMOD_DOCS=ON to cmake and run make doc. License: Copyright (c) 2017 Avast Software, licensed under the MIT license. See the LICENSE file for more details. Yaramod uses third-party libraries or other resources listed, along with their licenses, in the LICENSE-THIRD-PARTY file. Contributing: See RetDec contribution guidelines.
FEATURES
SIMILAR TOOLS
A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.
SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
A security-focused general purpose memory allocator providing the malloc API with hardening against heap corruption vulnerabilities.
Integrates static APK analysis with Yara and requires re-compilation of Yara with the androguard module.
A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.