ReversingLabs has developed a set of Open-Source YARA rules built with the purpose of delivering zero false positives. Achieving the highest level of quality requires a rigorous quality assurance test. Each rule must be run against ReversingLabs industry leading cloud repository of 25B unique binaries. Only the rules that meet the strictest of criteria are considered for GitHub.
ReversingLabs has developed, tested and published over 100 Open-Source YARA rules on GitHub.
The rules cover a broad range of categories, detecting a multitude of malware downloaders, viruses, trojans, exploits and ransomware.
YARA detection rules are developed for threat hunters, threat researchers, incident responders and security analysts with the mission to reduce malware infection risk across the organization.
Each unique rule can inspect file content on endpoints, during transfer, execution or at rest. While there’s no limit to usage, the best results are seen with fully inspected multi-layered content.
Apply these YARA rules within static analysis solutions that perform decomposition, dynamic sandbox solutions that perform in memory YARA matching, network IPS controls or even SIEMs.
On June 30th 2020 ReversingLabs published over 100 open-source YARA rules within the ReversingLabs GitHub repository.
ReversingLabs plans to use the GitHub repository as the primary delivery method for threat defenders to access updated and quality open-source YARA rules that detect the latest threats.
Software Supply Chain Security Analysis for end to end Software Development workflows, containers and release packagesLearn More
The world’s most popular and authoritative database of goodware and malware threat intelligenceLearn More
Assess millions of files from web traffic, email, file transfers, endpoints or storageLearn More
An instant malware lab with static and dynamic analysis for all of your company's
files and binaries