avallach<p>This feature of yara-x will simplify some of my rules. This is awesome!</p><p>The new yarax ‘with’ statement:</p><p><a href="https://github.com/VirusTotal/yara-x/pull/197#issue-2528471614" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/VirusTotal/yara-x/p</span><span class="invisible">ull/197#issue-2528471614</span></a></p><p><a href="https://infosec.exchange/tags/yara" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>yara</span></a> <a href="https://infosec.exchange/tags/yarax" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>yarax</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
mindly.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mindly.Social is an English speaking, friendly Mastodon instance created for people who want to use their brains and their hearts to make social networking more social. 🧠💖
Administered by:
Server stats:
1.2Kactive users
mindly.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#yarax
0 posts · 0 participants · 0 posts today
avallach<p>Know your tools 😉 </p><p><a href="https://github.com/lief-project/LIEF/issues/1061#issue-2315962044" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/lief-project/LIEF/i</span><span class="invisible">ssues/1061#issue-2315962044</span></a></p><p>Describe the bug<br>Parsing the sample with LIEF, YARA-X and pefile gives a different result for LIEF.<br>YARA-X and pefile agrees that those samples have exports, but LIEF says there is none.</p><p>Fwiw, <a href="https://infosec.exchange/tags/VT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VT</span></a> does not report them either - example: <a href="https://www.virustotal.com/gui/file/ffc89c701c4ab21f012eb8c69f01ca38ad6b011b5d4c56ed3237e937c49253d0" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">virustotal.com/gui/file/ffc89c</span><span class="invisible">701c4ab21f012eb8c69f01ca38ad6b011b5d4c56ed3237e937c49253d0</span></a></p><p><a href="https://infosec.exchange/tags/pefile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pefile</span></a> <a href="https://infosec.exchange/tags/yara" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>yara</span></a> <a href="https://infosec.exchange/tags/yarax" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>yarax</span></a> <a href="https://infosec.exchange/tags/lief" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>lief</span></a></p>
Tedi Heriyanto<p>YARA is dead, long live YARA-X: <a href="https://blog.virustotal.com/2024/05/yara-is-dead-long-live-yara-x.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.virustotal.com/2024/05/ya</span><span class="invisible">ra-is-dead-long-live-yara-x.html</span></a></p><p><a href="https://infosec.exchange/tags/YARA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YARA</span></a> <a href="https://infosec.exchange/tags/YARAX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YARAX</span></a></p>
avallach<p>Nice movement on porting the Macho <a href="https://infosec.exchange/tags/YARA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YARA</span></a> module over to <a href="https://infosec.exchange/tags/YARAX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YARAX</span></a> (the next implementation of Yara). Checkout Jacob’s blog here! <a href="https://latonis.github.io/yara-and-me" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">latonis.github.io/yara-and-me</span><span class="invisible"></span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload