Trees       Indices       Help   
Rekall Memory Forensics
Package rekall :: Package plugins :: Package windows :: Package malware :: Module yarascan
[frames] | no frames]

Module yarascan

source code

Author: Michael Cohen <scudette@gmail.com>

Classes
  WinYaraScan
Scan using yara signatures.
  ContextBuffer
A class to manage hits and create contiguous context buffers.
  WinPhysicalYaraScanner
An experimental yara scanner over the physical address space.
Variables
  __package__ = 'rekall.plugins.windows.malware'
   Trees       Indices       Help   
Rekall Memory Forensics
Generated by Epydoc 3.0.1 on Mon Oct 9 03:27:47 2017 http://epydoc.sourceforge.net