Giters

mez-0 / YaraEngine

A C++ Yara Rule Runner

Home Page:https://mez0.cc/posts/yaraengine/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

yarablue-teamdetectioncobalt-strikemalware

Yara Engine

A C++ Yara Rule Runner, making use of the Yara C API.

Usage

~ YaraEngine ~

PS> YaraEngine.exe <path to rule> <pid> [-v]

From Directory

YaraEngine c:\rules-master\ 22492

From File

YaraEngine c:\cobalt-strike.yar 22492

About

A C++ Yara Rule Runner

https://mez0.cc/posts/yaraengine/

yarablue-teamdetectioncobalt-strikemalware

License:MIT License

Languages

Language:C++ 100.0%