yarGen Logo

yarGen

0
Free
Visit Website

yarGen is a generator for YARA rules. The main principle is the creation of yara rules from strings found in malware files while removing all strings that also appear in goodware files. yarGen includes a big goodware strings and opcode database as ZIP archives that have to be extracted before the first use. In version 0.24.0, yarGen introduces an output option (--ai). This feature generates a YARA rule with an expanded set of strings and includes instructions tailored for an AI. Activating the --ai flag appends the instruction text to the yargen_rules.yar output file, which can subsequently be fed into your AI for processing. With version 0.23.0 yarGen has been ported to Python3. If you'd like to use a version using Python 2, try a previous release. (Note that the download location for the pre-built databases has changed)

FEATURES

ALTERNATIVES

Automates the process of preparing Android APK files for HTTPS inspection

A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

A program to extract IOCs from text files using regular expressions

Define and validate YARA rule metadata with CCCS YARA Specification.

A sandbox for quickly sandboxing known or unknown families of Android Malware

A tool for identifying and analyzing Java serialized objects in network traffic

Krakatau provides an assembler and disassembler for Java bytecode, supporting conversion, creation, examination, comparison, and decompilation of Java binaries.

Platform for uploading, searching, and downloading malware samples.