Module yara_support

source code

Routines for manipulating yara rule definitions.

Functions

anything_beetween(opener_and_closer)
Builds a (pyparsing) parser for the content inside delimiters.

source code

anything_in(opener_and_closer)

source code

anything_in_curly()

source code

meta_section()

source code

statement()

source code

strings_section()

source code

condition_section()

source code

section()

source code

rule()

source code

yara_parser()

source code

rule_to_ast(parsed_rule)

source code

parse_yara_to_ast(yara_rules)
Parse a yara rules file into a python AST.

source code

ast_to_yara(parsed_rules)

source code

Variables
	__package__ = `'rekall.plugins.tools'`

Function Details

anything_beetween(opener_and_closer)

source code

Builds a (pyparsing) parser for the content inside delimiters.

Args:
opener_and_closer: a string containing two elements: opener and closer

Returns:
  A (pyparsing) parser for the content inside delimiters.