YARA-Signator: Automated Generation of Code-based YARA Rules

Botconf 2019
2023-04-24 | 12:00 – 12:30

Felix Bilstein 🗣 | Daniel Plohmann 🗣

Composing YARA rules based on these feats requires a lot of experience and is typically done manually or at best tool-assisted, which still is a tedious and time-consuming process. In this presentation, we introduce YARA-Signator, an approach for the fully automated isolation of these characteristic code regions and the construction of YARA rules targeting them.

