all InfoSec news
Fara: Faux YARA
Malware Analysis, News and Indicators - Latest topics malware.news
FARA, or Faux YARA, is a simple repository that contains a set of purposefully erroneous Yara rules. It is meant as a training vehicle for new security analysts, those that are new to Yara and even Yara veterans that want to keep their rule writing (and debugging) sharp.
Example "faux" rule |
Find it over on Github:
https://github.com/bartblaze/FARA
Article Link: Blaze's Security Blog: Fara: Faux YARA
1 post - 1 participant
analysts article blog debugging link malware analysis repository rules security security blog sharp simple training vehicle veterans writing yara yara rules