YARA support

April 30, 2014

We now have (experimental) YARA support inside radare2.

If you are building from the latest git, you just have to install libyara, no need to recompile anything.

[0x00000000]> yara
Yara plugin
| add [path] : add yara rules
| clear      : clear all rules
| help       : show this help
| list       : list all rules
| scan       : scan the current file
[0x00000000]>

Since you may not already have some rules, we bundled some defaults ones, for packers and crypto primitives.

GSoC 2020: SLEIGH Disassembler Backend
Sep 6 2020
RSoC 2019 Final: Console Interface Improvements
Oct 1 2019
Radare2 Summer of Code 2019 Selection Results
Apr 2 2019
Radare2 Community Survey Results
Feb 2 2019
Radare2 and bioinformatics: a good match?
Aug 31 2018
GSoC 2018 Final: Debugging and Emulation Support for Cutter
Aug 20 2018
GSoC 2018 Final: Console Interface Improvementes
Aug 19 2018
GSoC 2018: Control Flow Structuring for Radeco-lib
Aug 12 2018
Gsoc 2018 Radeco Pseudo C Code Generation
Aug 12 2018
GSoC'18 Final: Type inference
Aug 12 2018

Read more