This endpoint will use the rules listed by the configuration
Last updated 1 month ago
Endpoint:/v1/engine/analysis/scan/yara/fast
This endpoint uses scan_fast_bytes, so the first rule that matches it will return with it, max payload size (UINT64_MAX)
scan_fast_bytes
{ "status": "connected", "message": "Connected successfully", "code": 200 }
{ "ns":"rules.yara.malwares.ransomwares", "rule":"linux_icefire_ransomware", "match_status": 1 // match }
