Supported Cortex XSOAR versions: 6.8.0 and later.
A playbook to run YARA scan against uploaded file. To run the playbook, provide the YARA rule content and the entry ID of the file you intend to scan.
|The entry ID of a file to scan
|The YARA rule content
|The Yara context path
|The filename of the file that was scanned.
|Whether there was an error when performing the scan.
|Whether the file matched any of the rules.
|The entry ID of the scanned file.
|The file ID of the scanned file.
|The number of rules that matched the file.
|A list of errors that occurred during the scan.
|The matches from the YARA scan.
|Metadata about the rule (as defined in the rule itself).
|The namespace defined in the rule.
|The rule name that matched.
|A list of strings that the rule matched.
|A list of tags that are defined in the rule.