A Python package and command line utility for scanning emails with YARA rules

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License
  • Author: Sean Whalen
  • Tags YARA, email, information security, infosec, security
  • Requires: Python >=3.7
Classifiers

Project description

yaramail logo

yaramail

Python tests PyPI PyPI - Downloads

yaramail is a Python package and command line utility for scanning emails with YARA rules. It is Ideal for automated triage of phishing reports.

Features

  • Scans all parts of an email via API or CLI
    • Headers
      • Removes header indents by default for consistent scanning
    • Plain text and HTML body content
      • Converts body content to Markdown by default for consistent scanning
    • Attachments
      • Raw file content
      • Emails attached to emails
      • PDF document text
      • ZIP file contents, including nested ZIP files
        • Uses message body content as a list of possible ZIP passwords
        • Customizable list of passwords to use when attempting to scan encrypted ZIP files
  • Provides a built-in methodology for categorizing emails
  • Parses Authentication-Results headers

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License
  • Author: Sean Whalen
  • Tags YARA, email, information security, infosec, security
  • Requires: Python >=3.7
Classifiers

Release history Release notifications | RSS feed

3.2.0

3.1.10

3.1.9

3.1.8

3.1.7

3.1.6

3.1.5

3.1.4

3.1.3

3.1.2

3.1.1

3.1.0

3.0.3

3.0.2

3.0.1

This version

3.0.0

2.1.0

2.0.17

2.0.16

2.0.15

2.0.14

2.0.13

2.0.12

2.0.11

2.0.10

2.0.8

2.0.6

2.0.5

2.0.4

2.0.3

2.0.2

2.0.1

2.0.0

1.1.1

1.1.0

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

yara_mail-3.0.0.tar.gz (13.9 kB view details)

Uploaded Source

Built Distribution

yara_mail-3.0.0-py3-none-any.whl (14.6 kB view details)

Uploaded Python 3

File details

Details for the file yara_mail-3.0.0.tar.gz.

File metadata

  • Download URL: yara_mail-3.0.0.tar.gz
  • Upload date:
  • Size: 13.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: python-httpx/0.23.0

File hashes

Hashes for yara_mail-3.0.0.tar.gz
Algorithm Hash digest
SHA256 27d26192218a2c4d3e15b7e92427a24c29aa7402d7980d2989825bb8622d5ba4
MD5 a5fc5757d638db1c108664da7ec21271
BLAKE2b-256 7e2fe67ee73f2f8aedb0acda2c257c12497cbce28263e400f6fc1eba1f5b45c8

See more details on using hashes here.

File details

Details for the file yara_mail-3.0.0-py3-none-any.whl.

File metadata

  • Download URL: yara_mail-3.0.0-py3-none-any.whl
  • Upload date:
  • Size: 14.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: python-httpx/0.23.0

File hashes

Hashes for yara_mail-3.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 aeb5f9646378da3a5774f724d08673d26cc3d6d9f88e1f11ada13c024eb3f813
MD5 3c7c9890385562c58595276ce2b8e56c
BLAKE2b-256 a839c664a82224b5a8be7dc27f0ac697ed92c3619bd683edf13a0e6dd9cf558f

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page