YARA is a tool aimed at helping malware researchers identify and classify malware samples.
https://virustotal.github.io/yara/
Links to this note
- noabot-constantin2024
- borges2021
- sshbackdors-dumont2018
- falseflags-kaspersky2017
- defendingagainstmaliciousshims-pierce2015
- equationdeathstar-great2015
- evadingedr-hand2024
- hiddenwasp-intezer2019
- incidentresponse-luttgens2014
- Moonlight Maze YARA rules
- strings as attribution
- tricephalichellkeeper-pourcelot2022
- unpacking diicot-tikochinski2024
- yara mode
- YARA rule
- YLS