A Python package and command line utility for scanning emails with YARA rules

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: Apache-2.0
    SPDX License Expression
  • Author: Sean Whalen
  • Tags YARA , email , information security , infosec , security
  • Requires: Python >=3.10
  • Provides-Extra: build
Classifiers
Report project as malware

Project description

yaramail logo

yaramail

Python tests PyPI PyPI - Downloads

yaramail is a Python package and command line utility for scanning emails with YARA rules. It is ideal for automated triage of phishing reports.

CLI Demo

asciicast

Features

  • Scans all parts of an email via API or CLI
    • Headers
      • Removes header indents by default for consistent scanning
    • Plain text and HTML body content
      • Converts body content to Markdown by default for consistent scanning
    • Attachments
      • Raw file content
      • Emails attached to emails
      • PDF document text
      • ZIP file contents, including nested ZIP files
        • Uses message body content as a list of possible ZIP passwords
        • Customizable list of passwords to use when attempting to scan encrypted ZIP files
  • Provides a built-in methodology for categorizing emails
  • Parses Authentication-Results headers

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: Apache-2.0
    SPDX License Expression
  • Author: Sean Whalen
  • Tags YARA , email , information security , infosec , security
  • Requires: Python >=3.10
  • Provides-Extra: build
Classifiers

Release history Release notifications | RSS feed

This version

3.4.1

3.4.0

3.3.0

3.2.3

3.2.2

3.2.1

3.2.0

3.1.10

3.1.9

3.1.8

3.1.7

3.1.6

3.1.5

3.1.4

3.1.3

3.1.2

3.1.1

3.1.0

3.0.3

3.0.2

3.0.1

3.0.0

2.1.0

2.0.17

2.0.16

2.0.15

2.0.14

2.0.13

2.0.12

2.0.11

2.0.10

2.0.8

2.0.6

2.0.5

2.0.4

2.0.3

2.0.2

2.0.1

2.0.0

1.1.1

1.1.0

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

yara_mail-3.4.1.tar.gz (15.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

yara_mail-3.4.1-py3-none-any.whl (15.8 kB view details)

Uploaded Python 3

File details

Details for the file yara_mail-3.4.1.tar.gz.

File metadata

  • Download URL: yara_mail-3.4.1.tar.gz
  • Upload date:
  • Size: 15.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: Hatch/1.16.5 cpython/3.13.9 HTTPX/0.28.1

File hashes

Hashes for yara_mail-3.4.1.tar.gz
Algorithm Hash digest
SHA256 7b5eb3b97600e0df3efeed731b5b7ac1a26c4aafe9bb40e9f4689ffa404c7df7
MD5 3514ea6021e46ffea694ab507407d69a
BLAKE2b-256 1fbb604a8eaa8eea0f26cd77ca53722ea5061a46e4da7a660083faaf4a371b8b

See more details on using hashes here.

File details

Details for the file yara_mail-3.4.1-py3-none-any.whl.

File metadata

  • Download URL: yara_mail-3.4.1-py3-none-any.whl
  • Upload date:
  • Size: 15.8 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: Hatch/1.16.5 cpython/3.13.9 HTTPX/0.28.1

File hashes

Hashes for yara_mail-3.4.1-py3-none-any.whl
Algorithm Hash digest
SHA256 08097963e52cff2bae42f4be26bdfcf58b3d7d36dc243ac0088980aaa1eea321
MD5 7182ac6126a88e83226ddc136e132440
BLAKE2b-256 277afec8cf9f5c827b156139a2ed0f12229885d1ccdc691bbe7aadb8f763ddc2

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page