diff options
Diffstat (limited to 'misc/yara/README')
| -rw-r--r-- | misc/yara/README | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/misc/yara/README b/misc/yara/README new file mode 100644 index 0000000000..22fe5340a1 --- /dev/null +++ b/misc/yara/README @@ -0,0 +1,11 @@ +YARA - a malware identification and classification tool + +YARA is a tool aimed at helping malware researchers to identify and classify +malware samples. With YARA you can create descriptions of malware families +based on textual or binary patterns contained on samples of those families. +Each description consists of a set of strings and a Boolean expression which +determines its logic. + +YARA is multi-platform, running on Windows, Linux and Mac OS X, and can be used +through its command-line interface or from your own Python scripts with the +yara-python extension. |