Commanding YARA


This class leverages an interactive environment to introduce students to YARA, the swiss army knife of pattern matching. Students begin with an introduction to YARA and then quickly move to dissecting and classifying files. They will construct rules for pattern matching and learn strategies to be more efficient in construction. Students will also learn how to scale rule collections and leverage rule organization to handle common and uncommon tasks to aid and speed up classification. When a student departs this class they will have practical understanding, confidence and experience to craft YARA rules for any file.

SKU: N/A Categories: , ,

Course Objectives

Through the user interactive labs the student will learn:

  • File classification
  • YARA rule creation
  • Fuzzy logic
  • Rule organization and strategy

Date & Time

Target Student

Threat intelligence, incident response, and information security professionals, forensic investigators or others with a requirement to classify and profile files.

Threat Intelligence and/or Digital Forensics experience suggested.


CDI Academy
1205 Sam Bass Road, Suite 300
Round Rock, TX 78681
(512) 255-3700

Your Instructor

Monty St John

Monty St John has been in the security world for more than two decades. When he is not responding to incidents he teaches classes in Threat Intelligence, Incident Response and Digital Forensics.


Certification of Completion