Introduction to YARA Part 3 - Rule Use Cases | allinfosecnews.com

Jan. 17, 2024, 1:13 a.m. | OALabs

OALabs www.youtube.com

In this OALABS Patreon tutorial we cover the three main use cases for YARA rules and how they apply to both BlueTeam/SOC operations and malware analysis.

Fun notes have been unlocked for everyone on our Patreon here
https://www.patreon.com/posts/introduction-to-96637668

The following are links to UnpacMe specific tutorials for developing each type of rule.

Identifying specific malware families (unpacked)
https://support.unpac.me/howto/hunting-with-yara/#identifying-specific-malware-families-unpacked

Identifying malware on disk or in network traffic (packed)
https://support.unpac.me/howto/hunting-with-yara/#identifying-malware-on-disk-or-in-network-traffic-packed

Hunting (malware characteristics)
https://support.unpac.me/howto/hunting-with-yara/#hunting-malware-characteristics

-----
OALABS DISCORD
https://discord.gg/6h5Bh5AMDU

OALABS PATREON
https://www.patreon.com/oalabs

Twitch …

analysis blueteam cases fun introduction links main malware malware analysis operations patreon rules soc soc operations tutorial tutorials unlocked use cases yara yara rules

More from www.youtube.com / OALabs

Zombieware 3 weeks, 6 days ago | www.youtube.com

bsides can contribute engineer +11

Introduction to YARA Part 4 - Efficient Rule Development 4 months, 2 weeks ago | www.youtube.com

automated can development discord +16

Introduction to YARA Part 3 - Rule Use Cases 4 months, 2 weeks ago | www.youtube.com

analysis blueteam cases fun +16

Introduction to YARA Part 2 - Hunting on UnpacMe 4 months, 2 weeks ago | www.youtube.com

automated discord github malware +4

Introduction to YARA Part 1 - What is a YARA Rule 4 months, 2 weeks ago | www.youtube.com

automated basics discord github +10

OALABS Holiday Variety Show 2023 5 months, 1 week ago | www.youtube.com

automated banter christmas discord +10

Tips For Analyzing Delphi Binaries in IDA (Danabot) 5 months, 2 weeks ago | www.youtube.com

analysis danabot don easier +9

How To Recognize Macro Encrypted Strings in Malware 6 months ago | www.youtube.com

automated disassembly discord encrypt +9

Direct vs. Indirect Syscalls What Is All The HYPE?! 7 months, 1 week ago | www.youtube.com

automated call care debates +14

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com