Thesis Details
Systém pro testování YARA pravidel
The goal of this bachelor's thesis is to design and implement system for testing rules, which are used to detect malware. Theoretical section contains necessary knowledge about the pattern description language and the pattern matching tool named YARA. Next section contains description and analysis of currently available detection rules, their structure and usage. A system developed by Avast Software used for distributed file scanning, called Yarka, is also described. The core of this thesis is about description of system for YARA rules testing using system Yarka. The achieved results of regression testing of rules are discussed in conclusion. This thesis was created with Avast Software collaboration.
malware, detection rules, testing, regression testing, YARA, Yarka
Bartík Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Malinka Kamil, Mgr., Ph.D. (DITS FIT BUT), člen
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS FIT BUT), člen
Strnadel Josef, Ing., Ph.D. (DCSY FIT BUT), člen
@bachelorsthesis{FITBT23046,
author = "Nat\'{a}lia Di\v{z}ov\'{a}",
type = "Bachelor's thesis",
title = "Syst\'{e}m pro testov\'{a}n\'{i} YARA pravidel",
school = "Brno University of Technology, Faculty of Information Technology",
year = 2020,
location = "Brno, CZ",
language = "slovak",
url = "https://www.fit.vut.cz/study/thesis/23046/"
}