search

PUNCH-Cyber / stoq-plugins-public

stoQ Public Plugins
https://stoq.punchcyber.com
Apache License 2.0
72 stars 24 forks source link

Yara Version upgrade #121

Open RomeoActual opened 3 years ago

RomeoActual commented 3 years ago

The yara version in the plugin is old, is it at all possible to update?

brbickel commented 3 years ago

The version of yara you're using is dependent on your environment. Upon initial installation of the yara plugin, stoq checks to make sure the installed version is at least 3.11 (currently), and will install or update as needed. Tou can keep the version of yara updated as you like. For example if you were to install the yara plugin today with:

stoq install --github stoq:yara

yara-python==4.0.4 is automatically installed.

If you'd like to update your existing environment, try updating the yara-python package:

pip install --upgrade yara-python

or

pip install yara-python==<specific-version>