Greetings, I had the 1.6 version installed. I tore it out and tried to build 1.7 but that is failing: bash-3.2# python setup.py build running build running build_ext building 'yara' extension cc -fno-strict-aliasing -fno-common -dynamic -I/usr/local/include -I/usr/local/opt/sqlite/include -DNDEBUG -g -fwrapv -O3 -Wall -Wstrict-prototypes -I/usr/local/include -I/usr/local/Cellar/python/2.7.3/Frameworks/Python.framework/Versions/2.7/include/python2.7 -c yara-python.c -o build/temp.macosx-10.8-x86_64-2.7/yara-python.o yara-python.c:259: error: expected specifier-qualifier-list before ‘YARA_CONTEXT’ yara-python.c:321: error: expected declaration specifiers or ‘...’ before ‘YARA_CONTEXT’ yara-python.c: In function ‘process_externals’: yara-python.c:338: warning: implicit declaration of function ‘yr_define_integer_variable’ yara-python.c:338: error: ‘context’ undeclared (first use in this function) yara-python.c:338: error: (Each undeclared identifier is reported only once yara-python.c:338: error: for each function it appears in.) yara-python.c:342: warning: implicit declaration of function ‘yr_define_boolean_variable’ yara-python.c:346: warning: implicit declaration of function ‘yr_define_string_variable’ yara-python.c: At top level: yara-python.c:358: error: expected declaration specifiers or ‘...’ before ‘YARA_CONTEXT’ yara-python.c: In function ‘Rules_new_from_file’: Shall see if I can figure that out and then come back to Volatility. -David On Oct 12, 2013, at 12:43 PM, Lorenzo Cantoni <lorenzo.cantoni86(a)gmail.com> wrote: