SANS Institute - Yara: Difference between revisions

From GCA ACT
Jump to navigationJump to search
(Created via script)
 
(Updated via script)
 
(2 intermediate revisions by the same user not shown)
Line 1: Line 1:
=Description=
=Description=
<br>
<br>
The Advanced Malware Protection (AMP) tool, Yara, was found at the website of the São Paulo Research Foundation (FAPESP). Yara is a tool that allows users to scan files or memory modules and identify malicious software. Yara uses a signature-based approach, where a user can create a signature for a specific piece of malware and then use that signature to identify the malware in a scan. Yara is unique in that it supports both static and dynamic analysis
The Advanced Malware Protection (AMP) tool, Yara, was found at the website of the São Paulo Research Foundation (FAPESP). Yara is a tool that allows users to scan files or memory modules and identify malicious software. Yara uses a signature-based approach, where a user can create a signature for a specific piece of malware and then use that signature to identify the malware in a scan.
<br>
<br>
=More Information=
=More Information=

Latest revision as of 02:57, 24 April 2024

Description


The Advanced Malware Protection (AMP) tool, Yara, was found at the website of the São Paulo Research Foundation (FAPESP). Yara is a tool that allows users to scan files or memory modules and identify malicious software. Yara uses a signature-based approach, where a user can create a signature for a specific piece of malware and then use that signature to identify the malware in a scan.

More Information


https://virustotal.github.io/yara/

Retrieved from ‘https://act.globalcyberalliance.org/index.php?title=SANS_Institute_-_Yara&oldid=12259