The Electronic Frontier Foundation (EFF) has released YAYA (which stands for Yet Another YARA Automation), an open source tool to help manage multiple YARA rule repositories.
The open source YARA tool helps malware researchers identify and classify malware samples. According to the EFF announcement, “YARA lets you create descriptions of malware (YARA rules) and scan files or processes with them to see if they match.”
YAYA then builds on this capability. It “starts by importing a set of high-quality YARA rules and then lets researchers add their own rules, disable specific rulesets, and run scans of files,” the announcement states.
YAYA currently only runs on Linux systems and is aimed at both new and experienced malware researchers. You can learn more about YAYA on the GitHub repository.
Comments