Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

include update hooks for plugins/analyzers + extend yara signatures #10

Open
RootLUG opened this issue Dec 28, 2020 · 0 comments
Open

include update hooks for plugins/analyzers + extend yara signatures #10

RootLUG opened this issue Dec 28, 2020 · 0 comments
Labels
enhancement New feature or request
Milestone
Aura v2.2

Comments

@RootLUG
Copy link
Contributor

RootLUG commented Dec 28, 2020

This repository: https://github.com/Yara-Rules/rules looks like a very good candidate for including built-in yara rules, especially the packer and obfuscation detection rules.

As this is a third-party repo, an update mechanism should be in place to provide the latest signatures without manually checking for updates in the yara rules. This could be accomplished (ideally) by extending the aura update with update hooks that would allow installed plugins/analyzers to call their own update operations.
@RootLUG RootLUG added the enhancement New feature or request label Dec 28, 2020
@RootLUG RootLUG added this to the Aura v2.2 milestone Dec 28, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
Aura v2.2
Development

No branches or pull requests
1 participant
@RootLUG