Add: fireeye/capa-rules

2025-01-11 15:49:34 -05:00 · 2020-09-13 16:41:22 +07:00 · 2020-09-13 16:41:22 +07:00 · ddb6b92b73
commit ddb6b92b73
parent 05285b3e73
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -80,6 +80,10 @@ This repository is created as an online bookmark for useful links, resources and
        <td><a href="https://github.com/fireeye/capa">fireeye/capa</a></td>
        <td>capa detects capabilities in executable files. You run it against a PE file or shellcode and it tells you what it thinks the program can do. For example, it might suggest that the file is a backdoor, is capable of installing services, or relies on HTTP to communicate.</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/fireeye/capa-rules">fireeye/capa-rules</a></td>
+        <td>Standard collection of rules for capa: the tool for enumerating the capabilities of programs</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/jymcheong/AutoTTP">jymchoeng/AutoTTP</a></td>
        <td>Automated Tactics Techniques & Procedures</td>