Automatically curate open source yara rules and run scans
go get github.com/EFForg/yaya
cd $GOPATH/src/github.com/EFForg/yaya
go build
go install
Yaya depends on the following packages outside the standard library:
You must also install the yara4 C libraries. We recommend you install these from source: https://yara.readthedocs.io/en/stable/gettingstarted.html
yaya [-h] <command> <path>
-h print this help screen
Commands:
update - update rulesets
edit - ban or remove rulesets
add - add a custom ruleset, located at <path>
scan - perform a yara scan on the directory at <path>
export - export all yara rules in single yar file in <path>