ZahidSQLDBA
diff --git a/‎Advent-of-Cyber-2021/Day-21-Needles_In_Computer_Stacks/README.md‎
Lines changed: 21 additions & 0 deletions b/‎Advent-of-Cyber-2021/Day-21-Needles_In_Computer_Stacks/README.md‎
Lines changed: 21 additions & 0 deletions
@@ -0,0 +1,21 @@
+# Day 21 - Needles In Computer Stacks
+
+- We changed the text in the string $a as shown in the eicaryara rule we wrote, from X5O to X50, that is, we replaced the letter O with the number 0. The condition for the Yara rule is $a and $b and $c and $d. If we are to only make a change to the first boolean operator in this condition, what boolean operator shall we replace the 'and' with, in order for the rule to still hit the file?
+
+- `**`
+
+- What option is used in the Yara command in order to list down the metadata of the rules that are a hit to a file? 
+
+- `**`
+
+- What section contains information about the author of the Yara rule?
+
+- `********`
+
+- What option is used to print only rules that did not hit?
+
+- `**`
+
+- Change the Yara rule value for the $a string to X50. Rerun the command, but this time with the -c option. What is the result?
+
+- `*`