Comments (10)
jvoisin
commented on August 11, 2024
What version of yara are you currently running? I think that the greedy flag was added in a recent (in the debian way) version.
from php-malware-finder.
ahpnils
commented on August 11, 2024
Hi,
yara version is 3.3.0. Platform is NetBSD 6.1.5 amd64. As for the compilation options and patches, you can have a look here : http://cvsweb.netbsd.org/bsdweb.cgi/pkgsrc/security/yara/
from php-malware-finder.
jvoisin
commented on August 11, 2024
To create your whitelist, you're running the python script generate_whitelist.py? If so, can you please check that it's using your latest yara version?
from php-malware-finder.
shaddai
commented on August 11, 2024
Hello,
In order to use latest version of php-malware-finder, you'll have to use yara 3.4.0
from php-malware-finder.
jvoisin
commented on August 11, 2024
Maybe this should be documented in the README file then ;)
from php-malware-finder.
jvoisin
commented on August 11, 2024
Done in 2b79a67
from php-malware-finder.
ahpnils
commented on August 11, 2024
Your commit adds "you should use at least YARA 3.2", not 3.4.
from php-malware-finder.
jvoisin
commented on August 11, 2024
3.2 should be enough, I'll bump the version if anyone complains.
from php-malware-finder.
ahpnils
commented on August 11, 2024
Correct me if I'm wrong, but i thought this issue was about yara 3.3 being too old for PMF ?
Unless some other commits happen to correct this, like bbcf378 ?
from php-malware-finder.
jvoisin
commented on August 11, 2024
Ho, my bad, I was thinking of the hash feature, not the greedy regexp, sorry :/
from php-malware-finder.
Related Issues (20)
- error: syntax error, unexpected <base64>, expecting identifier HOT 6
- php.yar warning HOT 3
- Whitelisting portions of file HOT 2
- Crash when using whitelist tool HOT 6
- Bro ,Can anyone help ,How to Fix it?? i am Noob HOT 2
- Use without yara HOT 1
- Fails to find a lot of malware HOT 1
- How to whitelist HOT 1
- generate-whitelist.py - multiple issues on centos 6.10 HOT 3
- Is this a truly backdoor and where is it? HOT 1
- php-malware crashed if not run from it's own dir
- fatal pointer error on --long-lines due to outdated dependency
- cannot make build HOT 7
- Provide proper exit code based on the result of the scan HOT 1
- Lots of false positives when scanning Wordpress source HOT 2
- getting running with yara HOT 5
- It is detecting all wordpress files HOT 5
- More info HOT 7
- unknown module "hash" HOT 2
- Maybe keep the samples in a separate repo ? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from php-malware-finder.