Based on our record, Ghidra seems to be a lot more popular than YARA. While we know about 64 links to Ghidra, we've tracked only 3 mentions of YARA. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
I've got no experience with reverse-engineering executables, but I got a bunch of code-like stuff showing up when I fed ULTIMA.EXE to Ghidra and told it to analyze it with all the flags set. Source: 11 months ago
The whole game is written in C++ (game logic intertwined with graphics). Ghidra can help you deconstruct the game binaries, but you need to put in a GREAT great effort to even get a starting point. Cheat Engine has been successful for some purposes, including an AI enabling utility for multiplayer (use with great care!). Source: 11 months ago
What I think you’re talking about is reverse engineering. It’s basically taking a program and analysing the compiled code to attempt to find out how it works. It’s a fairly expansive topic, and fairly tricky to do but look at anything to do with Ghidra to get started. Source: 12 months ago
Oh also just as an aside Ghidra is a really cool free tool developed by the NSA which can reverse engineer software by looking at its executable and recreating the C code from the instructions and static data within. It's another way to get familiarized with the relationship between C code and the instructions it compiles to. Source: about 1 year ago
There exist decompilers and other tools for helping make sense of assembly and that can automate some of the conversion back to higher level languages. In my brief involvement with Slippi I used Ghidra - a tool developed by the NSA, to do some of that kind of work, which I found a little amusing. Source: about 1 year ago
Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata... Source: 5 months ago
I suspect Virustotal doesn't do deep scans of uploaded files but rather just runs YARA rules over it If your custom build would be used by more people and their antivirus software would check that file you would most likely accumulate more false positives over time. Source: over 2 years ago
You can download Yara from here - https://virustotal.github.io/yara/. Source: almost 3 years ago
IDA - The best-of-breed binary code analysis tool, an indispensable item in the toolbox of world-class software analysts, reverse engineers, malware analyst and cybersecurity professionals.
Detect It Easy - Detect It Easy - Simple software to analyze a file, determine its type and packer
OllyDbg - OllyDbg is a 32-bit assembler level analysing debugger.
dirtyJOE - dirtyJOE - Java Overall Editor - homepage of binary java class file editor
Binary Ninja - A reverse engineering platform and GUI
Recaf - Recaf is a modern java bytecode editor using Objectweb's ASM and JavaFX.