Info

A fork of Loki - Simple IOC and YARA Scanner, rewritten for Linux and modified to support single file scans, as well as a daemon mode to accept scans in a client/server manner. It also includes some other improvements.

https://github.com/c0m4r/paranoya

Install

apt update
apt install gcc git libssl-dev python3 python3-dev python3-venv

cd /opt && git clone <https://github.com/c0m4r/paranoya.git>
cd paranoya && ./deploy.sh
cd .. && git clone <https://github.com/elastic/protections-artifacts/>
cd paranoya && ./paranoya.py --nolog --intense -p / --custom /opt/protections-artifacts/yara/rules/

297843894-929b9b57-f219-4be9-9ddb-519d80ae32a0.gif