Login
From:
Blog on YARA-X
(Uncensored)
subscribe
Using the Mach-O module in YARA-X
https://virustotal.github.io/yara-x/blog/using-the-mach-o-module-in-yara-x/
links
backlinks
Roast topics
Find topics
Find it!
Introduction Detecting things in Mach-O binaries used to be quite an effort in the original YARA; it would involve magic byte validation, guessing offsets, counting occurrences, and a lot more.
