ZahidSQLDBA
diff --git a/‎Advent-of-Cyber-2021/Day-21/README.md‎
Lines changed: 13 additions & 0 deletions b/‎Advent-of-Cyber-2021/Day-21/README.md‎
Lines changed: 13 additions & 0 deletions
@@ -0,0 +1,13 @@
+We changed the text in the string $a as shown in the eicaryara rule we wrote, from X5O to X50, that is, we replaced the letter O with the number 0. The condition for the Yara rule is $a and $b and $c and $d. If we are to only make a change to the first boolean operator in this condition, what boolean operator shall we replace the 'and' with, in order for the rule to still hit the file?
+Answer format: **
+What option is used in the Yara command in order to list down the metadata of the rules that are a hit to a file? 
+
+Answer format: **
+What section contains information about the author of the Yara rule?
+
+Answer format: ********
+What option is used to print only rules that did not hit?
+
+Answer format: **
+Change the Yara rule value for the $a string to X50. Rerun the command, but this time with the -c option. What is the result?
+