YaraDbg – Simplifying Yara Rule Development And Analysis For Security Analysts

YaraDbg is a free web-based Yara debugger to help security analysts to write hunting or detection rules with less effort and more confidence.

By using YaraDbg, you can perform a thorough root-cause-analysis (RCA) on why some of your Yara rules did or did not match with a specific file. It can also help you to better maintain a large set of yara rules.

YaraDbg frontend, this project, is the frontend application for YaraDbg. If you are interested on the backend implementation visit YaraDbg Backend project.

Features

Here is a list of main feature that YaraDbg offers:

1. Rule evaluation details
2. Fully-fledged Yara Editor with

• Syntax Highlighting
• Intellisense
• Rule Navigation
• Snippet

3. Matched strings panel
4. Rule Dependency Navigator
5. Option to copy/pasting a link to a yara rule
6. Capability to drag/dropping a password-protected zip file to analyze its content (pass must be “infected”)