Hi I'm Nedim Sabic, the lead developer of Fibratus tool. In the latest release of Fibratus, I added a native integration (through cython extension) with libyara, to automate the matching phase of yara rules when process creation is detected by the kernel. You can find more info here:
https://github.com/rabbitstack/fibratus Kind regards Nedim -- You received this message because you are subscribed to the Google Groups "YARA" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
