command
module
Version:
v0.0.0-...-aa82a4e
Opens a new window with list of versions in this module.
Published: Oct 13, 2019
License: LGPL-3.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
README
¶
yam
Yara rules fetcher and merger - get rules from (exclude mibile rules) https://github.com/Yara-Rules/rules.
Results rules.yara file can be used with volatility yarascan plugin.
Usage
To use just run
yam.exe
It will create **rules.yara ** file in current folder.
Next use it with volatility like in this example
volatility -f dump.raw --profile=WinXPSP2x86 yarascan -y rules.yar
Documentation
¶
There is no documentation for this package.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.