./security/yara, Pattern matching swiss knife for malware researchers

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 3.5.0, Package name: yara-3.5.0, Maintainer: khorben

YARA is a tool aimed at (but not limited to) helping malware
researchers to identify and classify malware samples. With YARA
you can create descriptions of malware families (or whatever you
want to describe) based on textual or binary patterns.


Required to build:
[pkgtools/cwrappers]

Master sites:


Version history: (Expand)


CVS history: (Expand)


   2017-05-15 17:34:12 by Pierre Pronchery | Files touched by this commit (1)
Log message:
Set myself as the maintainer
   2017-05-15 17:27:31 by Pierre Pronchery | Files touched by this commit (7) | Package updated
Log message:
Update security/{,py-yara} to version 3.5.0

The release notes mention:

  * Match length operator \ 
(http://yara.readthedocs.io/en/v3.5.0/wr … tch-length)
  * Performance improvements
  * Less memory consumption while scanning processes
  * Exception handling when scanning memory blocks
  * Negative integers in meta fields
  * Added the --stack-size command-argument
  * Functions import_ordinal, is_dll, is_32bit and is_64bit added to PE module
  * Functions rich_signature.toolid and rich_signature.version added to PE module
  * Lots of bug fixes

The Python bindings are now released from a different tree, with the same
versioning apparently though.

"welcome to update" pettai@
   2016-05-26 16:41:48 by Pierre Pronchery | Files touched by this commit (3) | Package updated
Log message:
Update security/yara to version 3.4.0

The changes include:

 * Short-circuit evaluation for conditions
 * New yr_rules_save_stream/yr_rules_load_stream APIs.
 * load() and save() methods in yara-python accept file-like objects
 * Improvements to the PE and ELF modules
 * Some performance improvements
 * New command-line option --print-module-data
 * Multiple bug fixes.
   2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)
Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2015-08-30 10:58:47 by David A. Holland | Files touched by this commit (2)
Log message:
Treat dfly like freebsd and bitrig like openbsd.
   2015-06-14 23:28:44 by Fredrik Pettai | Files touched by this commit (2)
Log message:
Add DIST_SUBDIR
   2015-06-06 11:15:50 by Fredrik Pettai | Files touched by this commit (1)
Log message:
+ security/py-yara
   2015-06-06 10:57:18 by Fredrik Pettai | Files touched by this commit (3)
Log message:
Cleanup the Makefile and move some common stuff to Makefile.common,
in preparation of additional yara-dependent stuff...