Make use of the yara rules to identify malware

Have you thought about giving a functionality to the checkmk also for cybersecurity?

For example, make use of the yara rules to identify malware samples in some files. Similar to the log pattern finder.

https://yara.readthedocs.io/en/v4.1.0/index.html

While this is a quite interesting idea, I think it does not really fit into the product strategy. But I am not the one to decide that.

More importantly: If you get value from this, why not develop a plugin yourself and earn glory and praise on exchange.checkmk.com? :wink:

hehe, I wish I had time for this too :slight_smile: Maybe later I’ll try. I think checkmk would be a great security tool

2 Likes

I hear you @a3093, time’s the rarest resource in this world. :see_no_evil:

Someone beat you to the punch, but there is room for improvement. :wink:
https://exchange.checkmk.com/p/cve-2021-44228-log4j-open