Skip to content
/ yfile Public

Reimplementation of the "file" command with yara rules for further analysis on scans

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

wellatleastitried/yfile

BranchesTags

Repository files navigation

yfile

Reimplementation of the "file" command with yara rules to scan for common malware signatures and other patterns.

Requirements

Development

Packages

  • just
  • yara
  • libyara-dev
  • gcc / clang (Any C compiler)

Go Tools

These can be installed by running just dev-setup once the project has been cloned.

  • golangci-lint
  • editorconfig-checker

Installation

Releases

The Binary can be downloaded from the releases page OR by running:

go install github.com/wellatleastitried/yfile/cmd/yfile@latest

Manual

  1. Clone the repository with submodules:
git clone --recurse-submodules https://github.com/wellatleastitried/yfile.git
  1. Run just
just build
  1. The binary can be ran from:
./build/yfile

or installed to /usr/local/bin with:

sudo just install

Usage

User guide can be found here.

Contributing

Contributions are welcome! Please see the contributing guide for more information.

License

This project is licensed under the Apache License. See the LICENSE file for details.

About

Reimplementation of the "file" command with yara rules for further analysis on scans

Topics

go linux golang file linux-shell file-format yara file-analysis yara-format yara-rules malware-detection yara-signatures file-analyzer

Resources

Readme

License

Apache-2.0 license

Contributing

Contributing
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 3

v0.1.2 Latest
Oct 20, 2025
+ 2 releases

Sponsor this project

Languages