Reverse engineered 90 builder tools – generated variant-specific YARA rules

3 points by GokbakarE 10 hours ago

I emulated 94 legacy builder apps in QEMU, generated their binaries, and wrote ultra-precise YARA rules for each. This isn't about coverage — it's about exact variant matching. All rules, metadata, and structure are open-sourced. Link in the repo: github.com/GokbakarE/RuleSetRAT