A Python package and command line utility for scanning emails with YARA rules

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License
  • Author: Sean Whalen
  • Tags YARA, email, information security, infosec, security
  • Requires: Python >=3.7
Classifiers

Project description

yaramail logo

yaramail

Python tests PyPI PyPI - Downloads

yaramail is a Python package and command line utility for scanning emails with YARA rules. It is Ideal for automated triage of phishing reports.

Features

  • Scans all parts of an email via API or CLI
    • Headers
      • Removes header indents by default for consistent scanning
    • Plain text and HTML body content
      • Converts body content to Markdown by default for consistent scanning
    • Attachments
      • Raw file content
      • Emails attached to emails
      • PDF document text
      • ZIP file contents, including nested ZIP files
        • Uses message body content as a list of possible ZIP passwords
        • Customizable list of passwords to use when attempting to scan encrypted ZIP files
  • Provides a built-in methodology for categorizing emails
  • Parses Authentication-Results headers

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sean.Whalen from gravatar.com Sean.Whalen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License
  • Author: Sean Whalen
  • Tags YARA, email, information security, infosec, security
  • Requires: Python >=3.7
Classifiers

Release history Release notifications | RSS feed

3.2.0

3.1.10

3.1.9

3.1.8

3.1.7

3.1.6

3.1.5

3.1.4

3.1.3

3.1.2

3.1.1

3.1.0

This version

3.0.3

3.0.2

3.0.1

3.0.0

2.1.0

2.0.17

2.0.16

2.0.15

2.0.14

2.0.13

2.0.12

2.0.11

2.0.10

2.0.8

2.0.6

2.0.5

2.0.4

2.0.3

2.0.2

2.0.1

2.0.0

1.1.1

1.1.0

1.0.4

1.0.3

1.0.2

1.0.1

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

yara_mail-3.0.3.tar.gz (13.9 kB view details)

Uploaded Source

Built Distribution

yara_mail-3.0.3-py3-none-any.whl (14.6 kB view details)

Uploaded Python 3

File details

Details for the file yara_mail-3.0.3.tar.gz.

File metadata

  • Download URL: yara_mail-3.0.3.tar.gz
  • Upload date:
  • Size: 13.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: python-httpx/0.23.0

File hashes

Hashes for yara_mail-3.0.3.tar.gz
Algorithm Hash digest
SHA256 160c2e8b59c7d291cfc73154a8ea888f2f6b04e574cbd9a9f8f3575258d3ad32
MD5 f4621d44f4c1b7ad9fa907ed8870a397
BLAKE2b-256 ef1d1d699d57100a8b92e3e93862cb53ee2c21e5b93bf07dd219d977b98aa378

See more details on using hashes here.

File details

Details for the file yara_mail-3.0.3-py3-none-any.whl.

File metadata

  • Download URL: yara_mail-3.0.3-py3-none-any.whl
  • Upload date:
  • Size: 14.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: python-httpx/0.23.0

File hashes

Hashes for yara_mail-3.0.3-py3-none-any.whl
Algorithm Hash digest
SHA256 32311651ea72a2928012c5980595a46bb35417cce24d5ed259e65be9e5966e84
MD5 c6ae06fc29436f9e8a9bcad13441aedd
BLAKE2b-256 3cf2dbffe256e743378a0dbcc800f77fc3d147b5139364a35e86ad9a97421751

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page