Skip to content

vominh2012/yara_sig_generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
my_mkyara
my_mkyara
 
 
README.md
README.md
 
 
create_yara_rules.py
create_yara_rules.py
 
 
export_symbols_yara_sig.idc
export_symbols_yara_sig.idc
 
 
yara_matching.py
yara_matching.py
 
 

Repository files navigation

"# yara_sig_generator"

usage: create_yara_rules.py [-h] -t TARGET [-a ADDRESS] [-f ADDRESS_FILE] -o OUTPUT

Examples:

  • create_yara_rules.py -t notepad.exe -a 0x576580 -o notepad_sig.yara
  • create_yara_rules.py -t notepad.exe -f notepad_offset.txt -o notepad_sig.yara

Notes:

  • Work well on both Python 2.7 & 3.7
  • address file, each line format is address[,length, function_name]

Depends:

About

Create yara signature from binary address

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages