Yara

Open source software used to identify and classify malware based on detection rules.

Description

Yara is an open-source software used to identify and classify malware based on detection rules. It allows security analysts to create patterns (rules) to detect malicious files by analyzing characteristics such as byte sequences, specific strings, or suspicious behaviors. Yara's rules are written in a simple syntax, using regular expressions and logical conditions, making it flexible for identifying threats in files, processes, or memory.

Main features:

Customizable rules: Users define rules based on signatures or patterns, such as hashes, strings, or file structures.
Use in forensic analysis: Integrates with malware analysis tools, such as file scanners or intrusion detection systems.
Command-line mode: Can be executed via terminal or scripts to automate analyses.
Integration: Supports integration with other security tools, such as VirusTotal, Cuckoo Sandbox, and SIEM systems.

Technical Specifications

Version: 4.5.3

Size: 2.13 MB

License: Free

Language: English

Platform: Windows (64 bits)

File Type: ZIP

SHA-256: 475b3b117dc6130df2d19a2e866bf2abc5e62eb058e8ab81fd79f6955ace3306

Developer: VirusTotal

Category: System/Antivirus

Last Update: 05/25/2025

Adlice Protect (RogueKiller)
Open source anti-malware security software designed to detect and remove malware and other threats.

PW Clean
Software that detects, eliminates, and undoes malicious software on storage devices.

GMER
Specialized program for removing rootkits.

ZHPDiag
Security diagnostic tool for Windows systems.

ZHPCleaner
Free utility that detects and removes adware, hijackers, toolbars, and PUPs from your browser.

PenClean
Software capable of detecting and removing virtual pests from pendrives, MP3, MP4 and other removable devices.

Yara

Open source software used to identify and classify malware based on detection rules.

Description

Main features:

Technical Specifications

Related

Contact