Expand description
Common YARA pattern libraries Provides pre-defined patterns for various detection scenarios
Constants§
- C2_
PATTERNS - Command and control (C2) patterns
- ENCRYPTION_
APIS - Common encryption API patterns
- FILE_
HEADERS - File header patterns for common file types
- OBFUSCATION_
PATTERNS - Code obfuscation patterns
- PERSISTENCE_
REGISTRY_ KEYS - Common registry persistence keys
- PROCESS_
INJECTION - Common process injection patterns
- RANSOMWARE_
EXTENSIONS - Common ransomware file extensions
- SANDBOX_
EVASION - Common sandbox evasion techniques
Functions§
- generate_
base64_ pattern - Generate base64 pattern
- generate_
hex_ pattern - Generate hex pattern with wildcards
- generate_
sha256_ pattern - Generate SHA256 pattern