added CAPA under reversing tools

2024-10-01 01:06:19 -04:00 · 2023-09-13 00:09:52 -04:00 · 2023-09-13 00:09:52 -04:00 · 58bb4dc272
commit 58bb4dc272
parent fb93ca03a1
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -263,6 +263,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an

 * [AMAaaS](https://amaaas.com/index.php/AMAaaS/dashboard) - Android Malware Analysis as a Service, executed in a native Android environment.
 * [Any Run](https://app.any.run/) - Interactive online malware analysis service for dynamic and static research of most types of threats using any environment.
+* [CAPA](https://github.com/mandiant/capa) - detects capabilities in executable files. You run it against a PE, ELF, .NET module, or shellcode file and it tells you what it thinks the program can do.
 * [CAPEv2](https://github.com/kevoreilly/CAPEv2) - Malware Configuration And Payload Extraction.
 * [Cuckoo](https://github.com/cuckoosandbox/cuckoo) - Open Source Highly configurable sandboxing tool.
 * [Cuckoo-modified](https://github.com/spender-sandbox/cuckoo-modified) - Heavily modified Cuckoo fork developed by community.