YARA

Allow registration and deletion of YARA rules, which are used to identify and classify types of malware based on malicious code signatures.

Filter YARA

Information

  • YARA is a tool that enables the detection and classification of malware based on character strings or binary patterns.

  • When a YARA rule is registered, ReceiveGUARD will analyze email attachments to detect signs of malware according to the rule’s criteria.

Filter YARA Add

Steps to add a YARA rule

  1. Click "Add" to create a new YARA rule.

  2. Document: Select the file containing the YARA rule.

  3. Explanation: Enter a description to clearly understand the rule’s purpose.

  4. Scope: Specify the application scope: document or URL.

  5. Applicability: Enable/disable the rule to control email filtering and blocking.

  6. Click "Add": Confirm and apply the newly created YARA rule.