This document describes Macaroni, a browser extension and server that allows users to search malware samples using YARA rule tags. The Macaroni extension integrates with VirusTotal and stores file hashes mapped to YARA signatures on the Macaroni server. The server uses Elasticsearch, Flask, and Redis to handle queries from the extension and manage users. The architecture is designed to be highly configurable and modular to easily add new features.