Yara Rules Explained | Complete Tutorial | TryHackMe Yara

TryHackMe Yara

We covered an introduction to YARA rules and how to create them to detect malwares using patterns that match common indicators of compromise. YARA rules are created and stored inside rule files that have .yar extension and rules are written in YAML language. We also used LOKI python script as a tool to scan for malicious files using Yara rules. We also covered how to generate Yara rules using yaraGen tool. Finally we explained how to research and download Yara rules using VALHALLA feed. This was part of TryHackMe Yara which is under SOC Level 1 Pathway.

CompTIA Security+ SY0-601 Study Notes

The Complete Practical Web Application Penetration Testing Course

Full writeup can be found here.