Yara Baby!

Yara is awesome! It’s one of the best malware analysis tools developed for identifying, finding, and quickly remediating malware specimes based on a set of characteristics. Being orgianlly developed for classifying maleare, it’s become my goto utility for threat hunting and is becoming increasingly popular. If your not familiar with this tool, please review the resources below. For those interested, I’m sharing my collection of rules for use.

Resources:

comments powered by Disqus