v0.13.0
Tool Improvements
- Add new --min-*-risk flags, obsolete --min-level by @tstromberg in #249
- Clean up displayed paths when encountering archives by @egibs in #217
- Ignore empty root strings when choosing output format by @egibs in #235
- Miscellaneous tweaks, additions, and performance improvements by @egibs in #236
- Remove leading @ from Author value by @tstromberg in #239
- Recursive: return first YARA parse error instead of last by @tstromberg in #248
Rule Improvements
- Add support for github.com/InQuest/yara-rules-vt by @tstromberg in #250
- Add Kiteshield rule by @egibs in #240
- Improve rules based on Kaiji analysis by @tstromberg in #226
- Update YARAForge and threat_hunting rules, fix issues in update script by @tstromberg in #241
- Improve Python detection for xFileSyncerx style attacks by @tstromberg in #244
- Remove dodgy php_hidden_eval rule by @tstromberg in #243
Developer Improvements
- Add tests for new functionality by @egibs in #215
- Replace Behavior map with slice by @egibs in #228
- Makefile: add 'refresh-sample-testdata' rule by @tstromberg in #246
Full Changelog: v0.12.0...v0.13.0
Contributors
tstromberg and egibs