yextend Logo

yextend

0
Free
Visit Website

yextend is a software designed to augment Yara by natively handling the inflation of archived content, allowing Yara to work on one file's payload even if it is buried within multiple levels of archived content. The tool passes the inflated content of each discovered resource to Yara for pattern matching based on a given set of rules. Software Credits: Yara by Victor M. Alvarez, License: https://raw.githubusercontent.com/VirusTotal/yara/master/COPYING, json.hpp by Niels Lohmann, License: https://raw.githubusercontent.com/nlohmann/json/develop/LICENSE.MIT. Note: A change was made to the original json.hpp for Yextend to compile successfully.

FEATURES

ALTERNATIVES

Go bindings for YARA with installation and build instructions.

A minimal, consistent API for building integrations with malware sandboxes

Define and validate YARA rule metadata with CCCS YARA Specification.

A tool that reveals invisible links within JavaScript files

Detect capabilities in executable files and identify potential behaviors.

A Django web interface for managing Yara rules with features like search, categorization, and bulk edits.

A tool that generates pseudo-malicious files to trigger YARA rules.

A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.

PINNED