YARA is a tool primarily used in malware research and detection.
YARA is a tool primarily used in malware research and detection.
It provides a rule-based approach to create descriptions of malware families based on regular expression, textual or binary patterns. A description is essentially a YARA rule name, where these rules consist of sets of strings and a Boolean expression.
Discovered by embedding cosine similarity (sentence-transformers MiniLM, 384-dim).