capa
Malware analyzer
An executable file analysis tool that identifies capabilities and potential malicious behaviors.
The FLARE team's open-source tool to identify capabilities in executable files.
5k stars
82 watching
565 forks
Language: Python
last commit: 2 months ago
Linked from 4 awesome lists
binary-analysismalware-analysisreverse-engineeringthreat-intelligence
rshipp/awesome-malware-analysis
meirwah/awesome-incident-response
0x4d31/awesome-threat-detection
packing-box/awesome-executable-packingRelated projects:
| Repository | Description | Stars |
|---|---|---|
| mandiant/capa-rules | A standard collection of rules for identifying capabilities in programs | 549 |
 kevoreilly/capev2 | A tool to extract configuration and payload from malware by analyzing its behavior in a sandboxed environment. | 2,043 |
 cyb3rmx/qu1cksc0pe | An all-in-one malware analysis tool that provides detailed information about suspicious files and executables. | 1,348 |
 uppusaikiran/generic-parser | Analyzes malware files to detect suspicious behavior by extracting meta information and features. | 1 |
| mandiant/flare-fakenet-ng | A tool to intercept and analyze network traffic for malware analysis and testing | 1,824 |
 lprat/static_file_analysis | Analyzes files to detect malware and extract embedded content | 49 |
| mandiant/speakeasy | Emulates specific components of the Windows operating system to analyze malware | 1,538 |
 jpcertcc/aa-tools | A collection of tools and scripts for analyzing malware, reverse engineering malware, and decrypting encrypted data | 455 |
 advanced-threat-research/dotdumper | An automated tool for analyzing .NET-based malware samples by logging function calls and dumping memory segments. | 250 |
 rieck/malheur | A tool for automatically analyzing malware behavior and identifying patterns and classes. | 369 |
 telekom-security/malware_analysis | An analysis repository providing scripts, signatures, and IOCs for detecting and analyzing malware. | 110 |
 mitrecnd/malchive | A collection of reusable scripts and tools for analyzing malicious software | 75 |
 glmcdona/process-dump | A tool to extract and analyze malware code from running Windows processes. | 1,662 |
 zhengmin1989/droidanalytics | An Android malware analysis system designed to collect and analyze malware signatures using machine learning techniques. | 29 |
 tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,158 |