This application was designed with end users in mind. Upload any file and Aegis will provide a YARA scan report and delete the uploaded file.
step 0 - git clone this repo.
step 1 - place the yara rules in /rules
step 2 - compile YARA and install packages for python.
step 3 - Start the web app with python3 aegis.py
step 4 - visit the web app by default the port is set to port 3000 however this can be modified to use port 80 by using gunicorn/nginx.
Python3 - https://python.org
YARA - https://virustotal.github.io/yara/
yara-python - https://pypi.org/project/yara-python/
No. Please test your YARA rules before including them in the Rules folder.
Aegis is licenced under the MIT licence.