FARA, or Faux YARA, is a simple repository that contains a set of purposefully erroneous Yara rules. It is meant as a training vehicle for new security analysts, those that are new to Yara and even Yara veterans that want to keep their rule writing (and debugging) sharp.
Example "faux" rule |
Find it over on Github:
https://github.com/bartblaze/FARA
No comments:
Post a Comment