Trees       Indices       Help   
Rekall Memory Forensics
Package rekall :: Package plugins :: Module yarascanner
[frames] | no frames]

Module yarascanner

source code

A Rekall Memory Forensics scanner which uses yara.

Classes
  YaraScanMixin
A common implementation of yara scanner.
  SimpleYaraScan
A Simple plugin which only yarascans the physical Address Space.
  TestYara
Test the yarascan module.
Variables
  __package__ = 'rekall.plugins'
   Trees       Indices       Help   
Rekall Memory Forensics
Generated by Epydoc 3.0.1 on Mon Oct 9 03:27:47 2017 http://epydoc.sourceforge.net