=Start=<\/p>\n
https:\/\/github.com\/search?o=desc&q=yara&s=stars&type=Repositories&utf8=%E2%9C%93<\/a><\/p>\n YARA\u662f\u4ec0\u4e48\uff1f<\/strong><\/span><\/p>\n \u6a21\u5f0f\u5339\u914d\u4e2d\u7684\u745e\u58eb\u519b\u5200\uff08The pattern matching swiss knife\uff09<\/p>\n YARA\u662f\u4e00\u6b3e\u65e8\u5728(\u4f46\u4e0d\u9650\u4e8e)\u5e2e\u52a9\u6076\u610f\u8f6f\u4ef6\u7814\u7a76\u4eba\u5458\u8bc6\u522b\u548c\u5206\u7c7b\u6076\u610f\u8f6f\u4ef6\u6837\u672c\u7684\u5de5\u5177\u3002\u4f7f\u7528YARA\uff0c\u60a8\u53ef\u4ee5\u6839\u636e\u6587\u672c\u6216\u4e8c\u8fdb\u5236\u6a21\u5f0f\u521b\u5efa\u6076\u610f\u8f6f\u4ef6\u5bb6\u65cf(\u6216\u60a8\u60f3\u8981\u63cf\u8ff0\u7684\u4efb\u4f55\u4e1c\u897f)\u7684\u63cf\u8ff0\u3002\u6bcf\u4e00\u4e2a\u63cf\u8ff0\uff0c\u79f0\u4e3a\u89c4\u5219\uff0c\u7531\u4e00\u7ec4\u5b57\u7b26\u4e32\u548c\u4e00\u4e2a\u51b3\u5b9a\u5176\u903b\u8f91\u7684\u5e03\u5c14\u8868\u8fbe\u5f0f\u7ec4\u6210\u3002<\/p>\n<\/div>\n<\/div>\n<\/div>\n YARA\u7684\u4f18\u52bf\u5728\u54ea\uff1f<\/strong><\/span><\/p>\n YARA\u6709\u54ea\u4e9b\u5e94\u7528\uff1f<\/strong><\/span><\/p>\n https:\/\/github.com\/VirusTotal\/yara<\/a> https:\/\/github.com\/Yara-Rules\/rules<\/a> https:\/\/github.com\/Yara-Rules\/rules\/tree\/master\/Webshells<\/a> https:\/\/www.tenable.com\/blog\/hunting-for-web-shells<\/a> =END=<\/p>\n","protected":false},"excerpt":{"rendered":" =Start= \u7f18\u7531\uff1a https:\/\/github.com\/search?o=desc&q=yara […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[23,25,12],"tags":[847],"class_list":["post-3400","post","type-post","status-publish","format-standard","hentry","category-knowledgebase-2","category-security","category-tools","tag-yara"],"views":11359,"_links":{"self":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/3400","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/comments?post=3400"}],"version-history":[{"count":2,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/3400\/revisions"}],"predecessor-version":[{"id":3454,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/3400\/revisions\/3454"}],"wp:attachment":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/media?parent=3400"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/categories?post=3400"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/tags?post=3400"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\u6b63\u6587\uff1a<\/h4>\n
\u53c2\u8003\u89e3\u7b54\uff1a<\/h5>\n
\n
\n
\u53c2\u8003\u94fe\u63a5\uff1a<\/h5>\n
\nhttp:\/\/yara.readthedocs.io\/en\/latest\/index.html<\/a><\/p>\n
\nhttps:\/\/github.com\/nbs-system\/php-malware-finder<\/a>
\nhttps:\/\/github.com\/Neo23x0\/yarGen<\/a>
\nhttps:\/\/github.com\/Neo23x0\/yarAnalyzer<\/a>
\nhttps:\/\/github.com\/mitre\/multiscanner<\/a>
\nhttps:\/\/github.com\/Xen0ph0n\/YaraGenerator<\/a>
\nhttps:\/\/github.com\/godaddy\/procfilter<\/a><\/p>\n
\nhttps:\/\/github.com\/phishme\/malware_analysis\/tree\/master\/yara_rules<\/a>
\nhttps:\/\/github.com\/tenable\/yara-rules<\/a><\/p>\n
\nhttp:\/\/www.tenable.com\/blog\/hunting-linux-malware-with-yara<\/a>
\nhttp:\/\/www.tenable.com\/blog\/threat-hunting-with-yara-and-nessus<\/a><\/p>\n