Create and test your own Yara signatures

  • Our rating
User Rating 4.5 (4 votes)
YaraEditor is a software that will reduce to zéro the hassle of writing and testing signatures for the Yara engine. It can store your rules into a local database or operate on raw files with syntax highlighting.
Choose your plan
  •    Registration
    If machine registration is available
  •    Custom plans
    If custom plans are available (Ex: company)
  •    Editor
    Editor your rules, with syntax highlight
  •    Tests
    Test your Yara rules
  •    Limitation
    Software limitation
  •    Support
    Get support for your questions or feedback
  •    Automatic Updates
    Update the software with one click
  •    Themes
    Customize the software appearance using built-in themes


  • Special plans available for companies.
  • No limitation


  • 5 files
    5 files open at the same time

IconDownload YaraEditor (Desktop)
AuthorAdlice Software
File Size17.78 MB
Operating SystemWindows XP, Vista, 7, 8, 8.1, 10, Linux. 32/64 bits
Tags   analysis     editor     malware     pe     reverse engineering     signatures     test     yara  

Yara has become a pretty popular standard in the Anti-malware industry to write signatures for malware detections. Many Anti-malware vendors, sandboxes vendors, HIPS vendors, CERTs or IT administrators are using rules to either detect malware based on the file, or to analyze network packets and trigger an alert when something malicious occurs.

Yara is a signature syntax and scanning engine, it's available with a library or a bunch of scripts. We, at Adlice Software, are specialized in making Yara easy and convenient to use. We are offering a desktop application to write, organize and test your rules into a local database, or in text files.

YaraEditor is a FREE application built to make your life easier in writing your rules (editor with syntax highlight) and testing them (against files, strings, buffers). You can also leverage Yara's ability to compile the rules into binaries.



  • Syntax highlighting.
  • Drag N drop support.
  • Write yara signatures in a complete IDE.
  • Compile rules and fix your errors.
  • Test your rules against strings (ANSI/Unicode).
  • Test your rules by scanning processes memory.
  • Test your rules by scanning files.
  • Test your rules by scanning folders.



Please refer to the general documentation.

Installer (Windows)Download 
YaraEditor.exe (Windows - 32 bits)Download 
YaraEditor.exe (Windows - 64 bits)Download 
YaraEditor.bin (Linux - 32 bits)Download 
YaraEditor.bin (Linux - 64 bits)Download