YaraDbg is a free web-based Yara debugger to help security analysts to write hunting or detection rules with less effort and more confidence.
By using YaraDbg, you can perform a thorough root-cause-analysis (RCA) on why some of your Yara rules did or did not match with a specific file. It can also help you to better maintain a large set of yara rules.
YaraDbg frontend, this project, is the frontend application for YaraDbg. If you are interested on the backend implementation visit YaraDbg Backend project.
Features
Here is a list of main feature that YaraDbg offers:
- Rule evaluation details
- Fully-fledged Yara Editor with
- Syntax Highlighting
- Intellisense
- Rule Navigation
- Snippet
- Matched strings panel
- Rule Dependency Navigator
- Option to copy/pasting a link to a yara rule
- Capability to drag/dropping a password-protected zip file to analyze its content (pass must be “infected”)