yara ansible-role ansible-galaxy security linux yara-scanner ubuntu debian

Ansible Role: Yara

Build the latest version of yara from latest release. Yara helps in identifying and classifying malware. The main motivation was to configure it on Wazuh agents

Role Variables

Available variables and their default values are found at defualts/main.yml

enable_ssl: false
enable_cuckoo: false
enable_magic: false
enable_dotnet: false

Each variable is a yara module that can be enabled to configure

Additional information on each module can be found at the documentation

Example Playbook

- hosts: server
  vars_files:
    - vars/main.yml
  roles:
    - { role: darsh12.yara }

vars/main.yml

enable_ssl: true  # true/false
enable_cuckoo: false  # true/false
enable_magic: true  # true/false
enable_dotnet: false  #true/flase

- hosts: all
  roles:
    - role: darsh12.yara
  vars:
    enable_ssl: true
    enable_cuckoo: true
    enable_magic: false
    enable_dotnet: false

License

BSD

Author Information

Role created in 2021 by darsh12

About

Ansible role - Build and install yara from source

yara ansible-role ansible-galaxy security linux yara-scanner ubuntu debian