Techly NewsGet the app

Get the latest tech news

YARA is dead, long live YARA-X


For over 15 years, YARA has been growing and evolving until it became an indispensable tool in every malware researcher’s toolbox.

Improved performance: YARA is known for its speed, but certain rules, especially those utilizing regular expressions or complex loops, can slow it down. Rewriting is risky, it introduces new bugs, backward compatibility issues, and doubles the maintenance efforts, since legacy code doesn’t disappear after launching the new system. At VirusTotal, we have been running YARA-X alongside YARA for a while, scanning millions of files with tens of thousands of rules, and addressing discrepancies between the two.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of YARA

YARA

« China's first sodium ion battery could cut reliance on lithium
The Iberian lynx doubles its population in just three years »