hillu
commented
11 months ago There is no encryption going on, the ruleset is just compiled.
Yes, go-yara supports loading compiled rulesets, see the LoadRules and ReadRules functions.
Closed RRancio closed 11 months ago
hillu
commented
11 months ago There is no encryption going on, the ruleset is just compiled.
Yes, go-yara supports loading compiled rulesets, see the LoadRules and ReadRules functions.
RRancio
commented
11 months ago i mean, if i request the compiled rule from a website or a host already compiled, can i use it anyways? (use the rule to scan), because it only says filename, not anything related to compiled url
RRancio
commented
11 months ago figured sir, sorry
hillu
commented
11 months ago A practical problem with passing around commpiled rulesets is that they are tied to the specific YARA version they were created with.
hey its me again :V, does Go-Yara support the encripted rules using Yarac.exe encryption?