During a batch analysis, all YARA match results are saved to Dynamo. However, SNS alerts are not sent for these matches if they were already matched in a previous version of the analyzers.
It can be very useful to see a summary of all of the YARA matches from the current versions of the analyzers, which will include malware or other YARA matches that may have been matched long ago.
Desired Change
Add a command to the CLI to generate a CSV summary of the latest YARA matches, e.g. manage.py generate_match_report
Background
During a batch analysis, all YARA match results are saved to Dynamo. However, SNS alerts are not sent for these matches if they were already matched in a previous version of the analyzers.
It can be very useful to see a summary of all of the YARA matches from the current versions of the analyzers, which will include malware or other YARA matches that may have been matched long ago.
Desired Change
Add a command to the CLI to generate a CSV summary of the latest YARA matches, e.g.
manage.py generate_match_report