mquery: Blazingly fast Yara queries for malware analysts
In Summary : Ever had trouble searching for particular malware samples? Our project is an analyst-friendly web GUI to look through your d...
https://updatesinfosec.blogspot.com/2018/05/mquery-blazingly-fast-yara-queries-for.html
In Summary :
Ever had trouble searching for particular malware samples? Our
project is an analyst-friendly web GUI to look through your digital
warehouse. mquery can be used to search through terabytes of malware in a blink of an eye.YARA is pretty fast, but searching through large dataset for given
signature can take a lot of time. To countermeasure this, we have
implemented a custom database called UrsaDB. It is able to pre-filter
the results, so it is only necessary to run YARA against a small
fraction of binaries. [...]
kindly refer the following link as follow up :
https://ift.tt/2ILJGSD
Ever had trouble searching for particular malware samples? Our
project is an analyst-friendly web GUI to look through your digital
warehouse. mquery can be used to search through terabytes of malware in a blink of an eye.YARA is pretty fast, but searching through large dataset for given
signature can take a lot of time. To countermeasure this, we have
implemented a custom database called UrsaDB. It is able to pre-filter
the results, so it is only necessary to run YARA against a small
fraction of binaries. [...]kindly refer the following link as follow up :
https://ift.tt/2ILJGSD
