Categorygithub.com/binalyze/goravariables
package
1.7.0
Repository: https://github.com/binalyze/gora.git
Documentation: pkg.go.dev
Overview
Versions
1
Dependencies
15
Dependents
1
Files
689 SLOC

# Functions

List returns the list of all available variables.

# Constants

Meta types.
Meta types.
Meta types.
Meta types.
| file_accessed_time | LWDA | Integer | 0 | File's access time in YYYYMMDDHHMMSS format |.
| file_birth_time | WD | Integer | 0 | File's birth time in YYYYMMDDHHMMSS format |.
| file_changed_time | L DA | Integer | 0 | File's change time in YYYYMMDDHHMMSS format |.
| file_compressed | W | Boolean | false | If it is a compressed file, its value is true |.
| file_encrypted | W | Boolean | false | If it is an encrypted file, its value is true |.
| file_extension | LWDA | String | "" | Extension of the file without leading dot.
| file_hidden | LWDA | Boolean | false | If it is a hidden file, its value is true |.
| file_modified_time | LWDA | Integer | 0 | File's modification time in YYYYMMDDHHMMSS format |.
| file_name | LWDA | String | "" | Name of the file including extension.
| file_path | LWDA | String | "" | Path of the file |.
| file_readonly | LWDA | Boolean | false | If it is a readonly file, its value is true |.
| file_system | W | Boolean | false | If it is a system file, its value is true |.
| in_filesystem | LWDA | Boolean | false | Determines whether the current scan context is running for the file system.
| in_process | LWDA | Boolean | false | Determines whether the current scan context is running for the processes.
| os | LWDA | String | "" | Operating system name, linux, windows, darwin or aix |.
| os_aix | LWDA | Boolean | false | If operating system is AIX, its value is true |.
| os_darwin | LWDA | Boolean | false | If operating system is Darwin/macOS, its value is true |.
| os_linux | LWDA | Boolean | false | If operating system is linux, its value is true |.
| os_windows | LWDA | Boolean | false | If operating system is Windows, its value is true |.
| process_command_line | LWDA | String | "" | Process's command line |.
| process_id | LWDA | Integer | 0 | Process's id |.
| process_name | LWDA | String | "" | Process's name |.
| process_parent_id | LWDA | Integer | 0 | Parent process id |.
| process_path | LWDA | String | "" | Process's path |.
| process_session_id | LWDA | Integer | 0 | Process's session id |.
| process_user_name | LWDA | String | "" | Process's user name.
| process_user_sid | LWDA | String | "" | Process's user SID.
| time_now | LWDA | Integer | 0 | Current time in YYYYMMDDHHMMSS format |.

# Variables

Valuers holds the Valuer implementations of all variables.

# Structs

Parser reprents a parser which parses the given yara rule(s) to identify all external variables, includes and imports used in the rule(s).
ScanContextImpl implements the ScanContext interface.
No description provided by the author

# Interfaces

No description provided by the author
No description provided by the author
No description provided by the author
No description provided by the author

# Type aliases

No description provided by the author
No description provided by the author
No description provided by the author