Thomas Roccia is a Snr Cyber Security Researcher at Microsoft, a Book writer, tool creator for the Cyber Security Community, and a speaker at SANS summit and much more.
In the Second part of this 2 part series I talk to him about his work and research on YARA Toolkit - an outcome from 100 days of YARA Challange.
Among the cyber security community , open source tools are just imperative for effective work.
And this here is something you must have your eyes on - if you're an Analyst / Engineer / Responder and even Forensic investigator - because YARA is one of those tools for these roles!
This toolk greatly simplifies how you create and use YARA Rule, this is the YARA Toolkit, by Thomas Roccia.
Details about the Yara Toolkit:
blog.securityb...
The tool currently includes:
1. YARA Rule Generator
2. YARA Scanner
3. YARA Arsenal
. Strings Mutation
. ImpHash
. Opcode Rule Gen
. Strings Ranking Extraction
and more.
Read about the tool's capabilities here:
blog.securityb...
Access it here:
yaratoolkit.se...
And the awesome BYOK GPT enabled engined for YARA rules:
DocYARA
yaratoolkit.se...
Check out his SANS CTI summit participation talking about this subject alongside Cyb3rwardog - Roberto Rodriguez, here:
• Beyond the Basics: The...
Check out his book here: store.security...
His blog here: blog.securityb...
Twitter: / fr0gger_
Follow him here: / thomas-roccia
Let me know in the comments your thoughts about it!
Like, Subscribe and Follow for more: linktr.ee/acam...
24 авг 2024
