Learned a bit about Yara today in the the Yara room on Tryhackme.com. Yara is a language that is used quite a bit in the creation of rules and data related to cyber threats. Many networking appliances such a firewalls and endpoint detection system can be configured with Yara rules to help detect threats based on certain types of actions or changes. This make detecting attacks even faster as these rules are pre-written and can just be added to an existing setup to start detecting and blocking threat right away.
