Skip to content

yarGen 0.18.0
Compare
Choose a tag to compare
@Neo23x0 Neo23x0 released this 14 Aug 19:49
· 184 commits to master since this release
0.18.0
dd90be5
  • PE module integration (imphashes and exports)
  • New database set (improved speed and lower memory usage)
  • New db-lookup.py tool
  • New regular expressions for better string extractions
  • Easier manual post processing due to new lines in the conditions
  • Code refactoring

Note:
The exports expression works fine with older versions of YARA that support the pe module. (tested with 3.5.0)
The imphash expression works fine with all YARA version 3.6 and higher.

Raw Version
screen shot 2017-08-14 at 19 55 03

Modified Version
screen shot 2017-08-14 at 21 51 26

DB Lookup Tool
screen shot 2017-08-14 at 21 19 28

DB Lookup Tool Examples
screen shot 2017-08-14 at 21 19 16

Assets 2
Loading