YARA
YARA is a pattern matching engine for malware identification and classification that enables analysts to create rules describing malware families and threat patterns, facilitating rapid malware detection and threat hunting during investigations
Category: Malware Analysis
Homepage: https://virustotal.github.io/yara/
Tags: malware-detection, pattern-matching, threat-hunting, malware-classification
Subscription Information
- Registration Required: No
- Subscription Required: No
- Free Subscription Available: Yes
Analyzers (1)
Yara v3.0
Check files against YARA rules, either from local filesystem or from one or multiple GitHub repositories. NOTE: Performance & execution time may be much longer according to the number of rules checked.
- Author: Nils Kuhnert, CERT-Bund; Fabien Bloume, StrangeBee
- License: AGPL-V3
- Data Types:
file - Configuration: .upstream/cortex/analyzers/Yara/Yara.json (raw)
Statistics
- Total Analyzers: 1
- Total Responders: 0
- Total Functions: 0
- Total External Integrations: 0
- Total Integrations: 1
This file is auto-generated from the integration manifest. Do not edit manually.