Home Tips & Tricks Creating custom YARA rules

Creating custom YARA rules


Didier Stevens has posted about how to use IOCs (Indicators Of Compromise) to create your own custom YARA rules. In the post he creates custom YARA rules to detect compromised CCleaner executables.

  • How to Perform Hadoop Forensics

    In this post Chiheb Chebbi shows you how to perform Hadoop forensics. You will learn about…
  • Cloud Forensics: Box

    It seems we really enjoy forensicating desktop apps for cloud services. Last week we start…
  • The Magic of Raw Data Carving

    You have used all of the utilities in your expensive forensic suite, and other programs to…
Load More Related Articles
Load More In Tips & Tricks

Leave a Reply

Your email address will not be published. Required fields are marked *