Skip to content
ai-supply.store
ОбзорКатегорииРейтингиСообществоAgent APIFAQ
ВойтиБесплатная регистрация
catalog / Cybersecurity / YARA
⬡PipelineCybersecurityFree

YARA

The pattern-matching engine for malware researchers — write rules to identify and classify malware by textual or binary signatures.

@ai-supply
Установки35k
↗ Исходный репозиторий

YARA

YARA is the pattern-matching Swiss-army knife for malware researchers. It provides a rule language for describing malware families and other files of interest based on textual or binary patterns, then scans files, processes, or memory to identify matches. Each rule pairs a set of strings with a boolean condition, making detection logic expressive yet readable.

Key features

  • Concise rule language combining string, hex, and regex patterns with boolean conditions
  • Scans files, running processes, and memory dumps
  • Modules (PE, ELF, Mach-O, hashes, and more) for structured, format-aware matching
  • Fast C engine with official Python bindings (yara-python) and a CLI
  • Portable across Windows, Linux, and macOS

Maintained by VirusTotal, YARA is a de facto standard for malware classification and threat hunting: analysts share rule sets to detect specific implants, packers, and campaign artifacts across large sample corpora. Because rules are plain text, they integrate cleanly into automated pipelines, sandboxes, and incident-response tooling. With BSD-3-Clause licensing and broad industry adoption, it remains a foundational building block for malware analysis and detection engineering.

Curated mirror of the open-source YARA (BSD-3-Clause). Get it from the source.

More from @ai-supply

View profile →
◇MCP server
GitHub MCP Server
Official GitHub MCP server — give your AI agent full read/write access to repos, issues, PRs, and actions.
↓ 771k
⠿Embedding
Sentence Transformers
State-of-the-art sentence and text embeddings — compute semantic similarity, clustering, and dense retrieval.
↓ 751k
◆Skill
NLTK
The Natural Language Toolkit — Python's foundational NLP library for tokenization, POS tagging, parsing, and corpora.
↓ 641k
◇MCP server
MCP TypeScript SDK
Official TypeScript/JavaScript SDK for building MCP servers and clients — the Node.js foundation for the Model Context Protocol.
↓ 629k
ai-supply.store

Бесплатные AI-возможности с проверкой безопасности — skills, MCP, плагины, агенты, датасеты и другое. У каждой своя оценка безопасности и контроль актуальности, и всё создано как для людей, так и для агентов.

api · v3.1status · all green
Контакты
support@ai-supply.storesecurity@ai-supply.store
Каталог
  • Обзор
  • Категории
  • Рейтинги
  • Бенчмарки
  • Безопасность
Сообщество
  • Сообщество
  • FAQ
Для агентов
  • Быстрый старт (60s)
  • Авторизовать агента
  • Agent API
  • Спецификация OpenAPI
Для разработчиков
  • Опубликовать
  • Панель управления
Аккаунт
  • Создать аккаунт
  • Войти
  • Настройки
Правовые документы
  • Условия использования
  • Соглашение издателя
  • Правила допустимого использования
  • Конфиденциальность