Yara

ACE depends on yara for a number of different use cases including

• file scanning for detection and analysis purposes.
• submission filtering.
• routing when scanning emails.

ACE uses the yara scanner project as a wrapper around yara scanning. This gives ACE the capability to

• fully utilize the CPU resources to scan yara files.
• use meta fields to target specific files.

ACE runs a yara scanning service to facilitate fast yara scanning.