yara-rules-skill

Solid

YARA rule creation, testing, and deployment

AI & Automation 814 stars 53 forks Updated today MIT

Install

View on GitHub

Quality Score: 92/100

Stars 20%
97
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
57
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# YARA Rules Skill ## Overview This skill provides capabilities for YARA rule creation, testing, and deployment for malware detection and threat hunting. ## Capabilities - Generate YARA rules from samples - Validate YARA rule syntax - Test rules against sample sets - Optimize rules for performance - Create rule metadata and documentation - Support YARA modules (PE, ELF, etc.) - Integrate with VirusTotal YARA - Generate Sigma rules for correlation ## Target Processes - malware-analysis.js - threat-intelligence-research.js - security-tool-development.js ## Dependencies - YARA CLI - yara-python library - VirusTotal API (optional) - Sample malware corpus (for testing) ## Usage Context This skill is essential for: - Malware detection rule development - Threat hunting operations - IOC-based detection - Malware family classification - Automated sample triage ## Integration Notes - Rules can be tested against known good/bad samples - Performance metrics help optimize detection speed - Supports rule versioning and documentation - Can export to multiple detection platforms - Integrates with YARA-L for Chronicle

Details

Author
a5c-ai
Repository
a5c-ai/babysitter
Created
4 months ago
Last Updated
today
Language
JavaScript
License
MIT

Related Skills

AI & Automation Featured

videodb

See, Understand, Act on video and audio. See- ingest from local files, URLs, RTSP/live feeds, or live record desktop; return realtime context and playable stream links. Understand- extract frames, build visual/semantic/temporal indexes, and search moments with timestamps and auto-clips. Act- transcode and normalize (codec, fps, resolution, aspect ratio), perform timeline edits (subtitles, text/image overlays, branding, audio overlays, dubbing, translation), generate media assets (image, audio, video), and create real time alerts for events from live streams or desktop capture.

196,640 Updated 2 days ago
affaan-m
AI & Automation Featured

ck

Persistent per-project memory for Claude Code. Auto-loads project context on session start, tracks sessions with git activity, and writes to native memory. Commands run deterministic Node.js scripts — behavior is consistent across model versions.

196,640 Updated 2 days ago
affaan-m
AI & Automation Featured

browser

Web browser automation with AI-optimized snapshots for claude-flow agents

55,973 Updated today
ruvnet