hi,
after reading https://www.intezer.com/blog-hiddenwasp-malware-targeting-linux-systems/ I want to run the yara rule mentioned therein “against in-memory artifacts” in order to be able to detect these implants. appreciate any help in this regard. thanks.
that link is not clear in explaining how to run it against in memory artifacts. yara documention explains how to run yara rule against a specific file but not against in-memory artifacts.