Search

Karel Hájek

Making YARA better: Authenticode, .NET, Telfhash

YARA is a popular open-source tool for malware identification and classification. But if you are reading a blog post about YARA improvements, I will assume you are already familiar with what YARA is and what it offers.  We have been using YARA...