yara-rules-skill

Solid

YARA rule creation, testing, and deployment

AI & Automation 1,160 stars 71 forks Updated today MIT

Install

Quality Score: 92/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

70

Documentation 15%

57

Issue Health 10%

50

License 10%

100

Description 5%

100

Skill Content

# YARA Rules Skill ## Overview This skill provides capabilities for YARA rule creation, testing, and deployment for malware detection and threat hunting. ## Capabilities - Generate YARA rules from samples - Validate YARA rule syntax - Test rules against sample sets - Optimize rules for performance - Create rule metadata and documentation - Support YARA modules (PE, ELF, etc.) - Integrate with VirusTotal YARA - Generate Sigma rules for correlation ## Target Processes - malware-analysis.js - threat-intelligence-research.js - security-tool-development.js ## Dependencies - YARA CLI - yara-python library - VirusTotal API (optional) - Sample malware corpus (for testing) ## Usage Context This skill is essential for: - Malware detection rule development - Threat hunting operations - IOC-based detection - Malware family classification - Automated sample triage ## Integration Notes - Rules can be tested against known good/bad samples - Performance metrics help optimize detection speed - Supports rule versioning and documentation - Can export to multiple detection platforms - Integrates with YARA-L for Chronicle

Details

Author: a5c-ai
Repository: a5c-ai/babysitter
Created: 4 months ago
Last Updated: today
Language: JavaScript
License: MIT

Similar Skills

Semantically similar based on skill content — not just same category

API & Backend Solid

yara-rule-authoring

Guides authoring of high-quality YARA-X detection rules for malware identification. Use when writing, reviewing, or optimizing YARA rules. Covers naming conventions, string selection, performance optimization, migration from legacy YARA, and false positive reduction. Triggers on: YARA, YARA-X, malware detection, threat hunting, IOC, signature, crx module, dex module.

5,501 Updated 4 days ago

AI & Automation Featured

performing-yara-rule-development-for-detection

Develop precise YARA rules for malware detection by identifying unique byte patterns, strings, and behavioral indicators in executable files while minimizing false positives.

13,115 Updated today

AI & Automation Featured

performing-threat-hunting-with-yara-rules

Use YARA pattern-matching rules to hunt for malware, suspicious files, and indicators of compromise across filesystems and memory dumps. Covers rule authoring, yara-python scanning, and integration with threat intel feeds.

13,115 Updated today

AI & Automation Featured

performing-malware-triage-with-yara

Performs rapid malware triage and classification using YARA rules to match file patterns, strings, byte sequences, and structural characteristics against known malware families and suspicious indicators. Covers rule writing, scanning, and integration with analysis pipelines. Activates for requests involving YARA rule creation, malware classification, pattern matching, sample triage, or signature-based detection.

13,115 Updated today

Data & Documents Solid

malware-analysis--sandboxing

Static and dynamic malware analysis, YARA rule generation, sandbox configuration, behavioral profiling, and malware family classification

50 Updated 2 days ago