Python bindings for YARA-X
Project description
The official Python library for YARA-X. Supports Python 3.8+ in Linux, MacOS and Windows.
import ezyara
rules = ezyara.compile('''
rule test {
strings:
$a = "foobar"
condition:
$a
}''')
results = rules.scan(b"foobar")
assert results.matching_rules[0].identifier == "test"
assert results.matching_rules[0].patterns[0].identifier == "$a"
assert results.matching_rules[0].patterns[0].matches[0].offset == 0
assert results.matching_rules[0].patterns[0].matches[0].length == 6
For more information about how to use this library, please check the documentation.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
ezyara-0.4.1.tar.gz
(493.2 kB
view hashes)
Built Distribution
Close
Hashes for ezyara-0.4.1-cp38-abi3-macosx_11_0_arm64.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 8ff194a15d55743a134b5b3fdfc2cddc2735b77be2e06b9cc57f527b836e3d36 |
|
| MD5 | dd86b7a8417bcc0a7bdf9290b9a08534 |
|
| BLAKE2b-256 | e03d10aee84eeba5bae34d15ae355f27a832de59b230c499a1374060315183b0 |
