YaraDbg – Simplifying Yara Rule Development And Analysis For Security Analysts

YaraDbg is a free web-based Yara debugger to help security analysts to write hunting or detection rules with less effort and more confidence.

By using YaraDbg, you can perform a thorough root-cause-analysis (RCA) on why some of your Yara rules did or did not match with a specific file. It can also help you to better maintain a large set of yara rules.

YaraDbg frontend, this project, is the frontend application for YaraDbg. If you are interested on the backend implementation visit YaraDbg Backend project.

Features

Here is a list of main feature that YaraDbg offers:

Rule evaluation details
Fully-fledged Yara Editor with

Syntax Highlighting
Intellisense
Rule Navigation
Snippet

Matched strings panel
Rule Dependency Navigator
Option to copy/pasting a link to a yara rule
Capability to drag/dropping a password-protected zip file to analyze its content (pass must be “infected”)

IntelOwl : Analyze Files, Domains, IPs In Multiple Ways From A Single API At Scale

August 29, 2020

In "Kali Linux"

Kraken : Cross Platform Yara Scanner Written In Go

November 12, 2020

In "Kali Linux"

Mastering YARA: A Comprehensive Guide to Detection Engineering and Rule Development

December 21, 2023

In "Cyber security"

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.