Merge pull request #221 from Gaffx/master

Added CAPA under Sandboxing/Reversing Tools
2025-01-02 19:10:54 -05:00 · 2023-09-13 09:35:35 +03:00 · 2023-09-13 09:35:35 +03:00 · dbaa77494d
commit dbaa77494d
parent fb93ca03a1 58bb4dc272
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -263,6 +263,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an

 * [AMAaaS](https://amaaas.com/index.php/AMAaaS/dashboard) - Android Malware Analysis as a Service, executed in a native Android environment.
 * [Any Run](https://app.any.run/) - Interactive online malware analysis service for dynamic and static research of most types of threats using any environment.
+* [CAPA](https://github.com/mandiant/capa) - detects capabilities in executable files. You run it against a PE, ELF, .NET module, or shellcode file and it tells you what it thinks the program can do.
 * [CAPEv2](https://github.com/kevoreilly/CAPEv2) - Malware Configuration And Payload Extraction.
 * [Cuckoo](https://github.com/cuckoosandbox/cuckoo) - Open Source Highly configurable sandboxing tool.
 * [Cuckoo-modified](https://github.com/spender-sandbox/cuckoo-modified) - Heavily modified Cuckoo fork developed by community.