This Gist has been transfered into a Github Repo. You'll find the most recent version here.
When creating your rules for YARA keep in mind the following guidelines in order to get the best performance from them. This guide is based on ideas and recommendations by Victor M. Alvarez and WXS.
Install the dependencies for the archiso package:
(root): pacman -S make squashfs-tools libisoburn dosfstools patch lynx devtools git
I recommend archiso getting them from git, there is a package in the repositories, however, at this time of writing, it will not work with the instructions below.
So, grab the most recent version from git and install it:
(user): git clone git://projects.archlinux.org/archiso.git && cd archiso
| set statusline = | |
| " Buffer number | |
| set statusline +=[%n] | |
| " File description | |
| set statusline +=%f\ %h%m%r%w | |
| " Filetype | |
| set statusline +=%y | |
| " Name of the current function (needs taglist.vim) | |
| set statusline +=\ [Fun(%{Tlist_Get_Tagname_By_Line()})] | |
| " Name of the current branch (needs fugitive.vim) |