Skip to content

Factual rules version 1.0 released

Latest
Latest
Compare
Choose a tag to compare
@adulau adulau released this 18 Jan 10:14
v1.0
This tag was signed with the committer’s verified signature.
adulau Alexandre Dulaunoy
GPG key ID: 09E2CD4944E6CBCD
Learn about vigilant mode.
310ff20
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Factual rules version 1.0 released

Factual rules are YARA rules to find legitimate software on raw disk acquisition. The goal of the software is to be able to use a set of rules against collected or acquired digital forensic evidences and find installed software in a timely fashion. All the rules are generated using factual-rules-generator.

The source code for generating automatically rules is released as open source as factual rules generator.

Assets 2
Loading