Skip to content

Releases: VirusTotal/yara-x

v0.8.0

09 Sep 15:24
@github-actions github-actions
v0.8.0
f3ecfba
This commit was signed with the committer’s verified signature.
plusvic Victor M. Alvarez
GPG key ID: 8DCC0C6CA10F526A
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.8.0 Latest
Latest
  • Implement command fmt for automatic YARA code formatting.
  • Add --module-data option to scan command (#183).
  • Add --ignore-module option to scan and compile commands (0536024).
  • Implement cuckoo module for backward compatibility with YARA (#191).
  • More warnings for potentially slow rules (38ddfb1, 1db2190).

Contributors: @chudicek, @qjerome

Contributors

qjerome and chudicek
Assets 6
Loading

v0.7.0

28 Aug 11:00
@github-actions github-actions
v0.7.0
c4a1bb0
This commit was signed with the committer’s verified signature.
plusvic Victor M. Alvarez
GPG key ID: 8DCC0C6CA10F526A
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.7.0
  • Better representation of flags in YAML output (aff398b).
  • Accept comparisons between boolean expression and integer constant (1dd3ade).
  • Add --print-meta option to scan command (#170).
  • Add --tag and --print-tags options to scan command for tag filtering and printing (#171).
  • Add --count option to scan command (#174).
  • Allow to specify the source's origin in the Golang, Python and C APIs.
  • API redesigned to expose more details about compiler errors and warnings.
  • BUGFIX: OOM errors while scanning some corrupted PE files (258e090).
  • BUGFIX: panics while scanning some corrupted PE files (5a6b944, 3f011ee, b82c930).

Contributors: @wxsBSD

Contributors

wxsBSD
Assets 6
Loading

v0.6.0

31 Jul 06:33
@github-actions github-actions
v0.6.0
9ebb0e5
Compare
Choose a tag to compare
v0.6.0
  • Implement new error-tolerant parser that fixes some existing issues like #136 and #150.
  • Scan command now can produce ndjson output. (#161)
  • BUGFIX: Handle non-ASCII spaces in filenames. (#163)

Contributors: @wxsBSD, @szabgab

Contributors

szabgab and wxsBSD
Assets 6
Loading

v0.5.0

01 Jul 07:19
@plusvic plusvic
v0.5.0
221623e
Compare
Choose a tag to compare
v0.5.0

What's Changed

  • Parse Mach-O exports and add export_hash function to macho module (#132)
  • Add --disable-warnings option. Specific warnings can be disabled by using warning identifiers like slow_patterns, duplicate_import, unsatisfiable_expr, etc (#140).
  • Raise warning when a boolean expression is always true or false (5f6a1d7).
  • BUGFIX: fix multiple crashes in macho module.
  • BUGFIX: fix multiple crashes in pe module.

Contributors: @latonis

Contributors

latonis
Assets 6
Loading

v0.4.0

29 May 11:58
@github-actions github-actions
v0.4.0
53e807e
Compare
Choose a tag to compare
v0.4.0
  • Implement the --scan-list option for the scan command (21e8481).
  • Implement the --output option for the compile command (c7759f8).
  • Allow using non-global rules from global rules (865db1d).
  • Implement APIs for accessing rule metadata (9f90eaa, 1e816a7, 3508d53, 9ddbbbe).
  • Implement dylib and entitlement hashing in macho module (#93).
  • Allow multi-line string literals in rule metadata (#121 ).
  • BUGFIX: Fix stack overflow when rules have a lot of patterns and use the x of them statement (b134252).

Contributors: @latonis, @wxsBSD

Contributors

wxsBSD and latonis
Assets 6
Loading

v0.3.0

17 May 11:03
@github-actions github-actions
v0.3.0
543ac48
Compare
Choose a tag to compare
v0.3.0

This is the first public beta for YARA-X.

Assets 6
Loading