-
Feature Request
----------------
Would it may be possible to enhance ClamAV to support unpacking "AR" Archive format. This would make it possible to scan all .deb packages for malware inside, what n…
-
https://github.com/HarfangLab/iocs/blob/main/TRR240101/trr240101_yara.yar
https://github.com/HarfangLab/iocs/blob/main/TRR240201/trr240201_yara.yar
https://github.com/bartblaze/Yara-rules
https…
-
From https://github.com/hapijs/yar
> Starting with Hapi 12 the request.session placeholder was removed.
> The guidance from Hapi maintainer Eran Hammer was for this and similar modules to move data s…
-
I am trying to run plaso across a large Windows image (740GB of E01s) but it fails to complete with worker threads shown as killed or idle for an extended period:
```
plaso - log2timeline versio…
-
Здравствуйте.
Ошибка та же, что и в #215.
Вот лог
```
2021-08-23 19:33:01,670 [23] INFO NWebDav.Server.WebDavDispatcher [(null)] - PROPFIND:http://127.0.0.1:801/Backup/VIVOBOOK/DataBases_2021-0…
-
Cuckoo output similar to:
```
YaraSyntaxError: /opt/cuckoo-modified/data/yara/index_memory.yar:37: syntax error, unexpected _IDENTIFIER_, expecting _CONDITION_
/opt/cuckoo-modified/data/yara/index_me…
-
As you allude to, there are plenty of res. selectors, but I do think yours is the most elegant solution thus far! I love the overextend feature, and it seems like a pretty natural step, in my eyes, to…
-
git clone https://github.com/msgpack/msgpack-c.git
cd msgpack-c
./bootstrap
./configure
make
make install
libevent为 libevent-2.0.22-stable
安装yar-c时失败
yar_pack.c: In function 'yar_unpack_data_type':
…
-
gen_mal_3cx_compromise_mar23.yar causes
undefined identifier "extension"
undefined identifier "file name"
When using Yara64.exe
Consider adding to exclusion list
-
msgpack需要哪个版本呢?
yar_pack.c: In function 'yar_unpack_data_type':
yar_pack.c:211:8: error: 'MSGPACK_OBJECT_FLOAT' undeclared (first use in this function)
case MSGPACK_OBJECT_FLOAT:
^
y…