darsh12.yara

Overview Versions Insights

Ansible Role: Yara

Molecule Test

Build the latest version of yara from latest release. Yara helps in identifying and classifying malware. The main motivation was to configure it on Wazuh agents

Role Variables

Available variables and their default values are found at defualts/main.yml

enable_ssl: false
enable_cuckoo: false
enable_magic: false
enable_dotnet: false

Each variable is a yara module that can be enabled to configure

Additional information on each module can be found at the documentation

Example Playbook

- hosts: server
  vars_files:
    - vars/main.yml
  roles:
    - { role: darsh12.yara }

vars/main.yml

enable_ssl: true  # true/false
enable_cuckoo: false  # true/false
enable_magic: true  # true/false
enable_dotnet: false  #true/flase

- hosts: all
  roles:
    - role: darsh12.yara
  vars:
    enable_ssl: true
    enable_cuckoo: true
    enable_magic: false
    enable_dotnet: false

License

BSD

Author Information

Role created in 2021 by darsh12

About

Build and install yara from source

role linux security yara
Install
ansible-galaxy install darsh12.yara
GitHub repository
3 stars
1 forks
0 open issues
License
Unknown
Downloads
33
Owner
darsh12
Master of Science in Cyber Security Engineering student at the University of Washington Bothell