Yara rules support for endpoint scans

ComodoSecurity / openedr

Open EDR public repository

Other

2.19k stars 434 forks source link

Yara rules support for endpoint scans #11

Closed trizzosk closed 3 years ago

trizzosk commented 3 years ago

Add option to search for IoC on endpoints with using Yara rules. These rules could be imported to central console and distributed via console requests to endpoints_

ozercomodo commented 3 years ago

very good point, adding it to the roadmap board

ozercomodo commented 3 years ago

https://github.com/ComodoSecurity/openedr_roadmap/projects/1 here added