Curated subset of Yara rules focused on embedded system security. Used in Salvum.
This set as well as the Yara runner in Salvum were put together by: m0nZSt3r and Matzr3lla, QVLx Labs
Some of these rules may be deprecated. Plucked out some obvious ones like maldocs. The superset is here: https://github.com/Yara-Rules/rules/tree/master
Thanks to VirusTotal: https://www.virustotal.com/