Need help with yaya?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

EFForg
184 Stars 20 Forks GNU General Public License v3.0 40 Commits 8 Opened issues

Description

Yet Another Yara Automaton - Automatically curate open source yara rules and run scans

Services available

!
?

Need anything else?

Contributors list

"The YAYA logo and automaton mascot"

YAYA - Yet Another Yara Automaton

Automatically curate open source yara rules and run scans

Installation

go get github.com/EFForg/yaya
cd $GOPATH/src/github.com/EFForg/yaya
go build 
go install 

Dependencies

Yaya depends on the following packages outside the standard library: * https://github.com/go-git/go-git * https://github.com/hillu/go-yara * https://github.com/jinzhu/gorm

You must also install the yara4 C libraries. We recommend you install these from source with the following command:

wget https://github.com/VirusTotal/yara/archive/refs/tags/v4.1.0.tar.gz && mkdir yara && cd yara && tar xf ../v4.1.0.tar.gz \
    && cd yara-4.1.0/ && ./bootstrap.sh && ./configure --enable-cuckoo --enable-magic --enable-dotnet && make && sudo make install && sudo ldconfig

More info and docs can be found here

Running

asciicast

Usage

yaya [-h]  
    -h   print this help screen
Commands:
    update - update rulesets
    edit - ban or remove rulesets
    add - add a custom ruleset, located at 
    scan - perform a yara scan on the directory at 
    export - export all yara rules in single yar file in 

Docker

YAYA includes a docker file and can be run inside a container as well by linking the path to be scanned to a path in the container.

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.