Yara

The pattern matching swiss knife for malware researchers (and everyone else)

Supported Actions

• test connectivity: Validate the asset configuration for connectivity using supplied configuration
• clear yara sources: Delete any files stored in the Vault to clear any Yara rules persisted for this asset
• update yara sources: Download and persist any rule sources defined in assets associated with this app
• list yara sources: List sources of Yara rules previously downloaded and stored in the Vault
• yara scan: Compile (if needed) any specified Yara rules and scan specified target for matches