yara_tools
yara_tools copied to clipboard
matonis
Create an entire YARA rule via Python? Whhhhhhaatttt?
Is there a workaround at the moment for adding a string of bytes to a rule in Yara's format? Looked around in documentation/examples and I haven't found anything. - Eg:...
Hi, wondered if functionality to edit an existing rule (from str) was on the roadmap? I'd like to be able to add meta fields to my existing rules programmatically Cheers
Unsurprisingly this routine is unnecessarily complicated. Code is hard to understand, needs better abstraction.
``` rule.add_strings(strings="HelloWorld",condition="$IDENTIFIER at 0") ``` This possibly relates to enhancing condition functionality, but the template for conditions has no idea to map integers assigned to unitialized string variables. Meaning, the...
Users might find value in inline comments for conditions.
The current design for condition groups might create some problems. Conditions might get complex enough to warrant its own object. This would enable unique processing of complex conditions without bogging...