Description
Matches files, memory dumps, or samples against detection rules used by malware researchers and incident responders. It helps classify suspicious artifacts, automate triage, and share detection logic in a readable rule format.
Use it only on samples and systems you are authorized to inspect. YARA rules can produce false positives or miss threats, and handling malware samples requires isolation and careful operational security.