Version 1.2 This is for adding the awsome Yara pattern scanner to windows right click menus.
Changelog 1.2
Added Peid signatures made by Didier Stevens http://blog.didierstevens.com/
Added Malicious Documents scripts since there are multiple now
Change right name for anti VM
small fixes for win 7 and xp users.
What it Does
Right click a folder Scan folders and subfolder files recursive for
Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures
Right Click a File
Scan files for
Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures
Install
Since its really just alot of registry based commands, you have to have the files at,
C:\yara\yara32.exe
C:\yara\icons\
C:\yara\mailware\
I have added all rules to date, but if you wanna do it yourself, grap new yara rules from. https://github.com/Yara-Rules/rules
And if you want new binary prebuild(Use x86 one)I have 3.4.0 in this repo. https://github.com/plusvic/yara/releases/tag/v3.4.0
after you have extracted everything accoring to the folder i explained.
run
Add_Yara_Pattern_scanner_rmenu_To_right_click_file.reg
then
Add_Yara_Pattern_scanner_rmenu_To_right_click_folder.reg
Folder scan
File scan
Result
regards