Capa Alternatives

Similar projects and alternatives to capa

flare-ida

2 2,097 3.2 Python capa VS flare-ida

IDA Pro utilities from FLARE team
capa-rules

1 482 9.1 capa VS capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs
InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
flare-floss

4 3,007 9.3 Python capa VS flare-floss

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
hashdb-ida

2 276 0.0 Python capa VS hashdb-ida

HashDB API hash lookup plugin for IDA Pro
drakvuf-sandbox

2 979 8.4 Python capa VS drakvuf-sandbox

DRAKVUF Sandbox - automated hypervisor-level malware analysis system
hexcopy-ida

1 55 10.0 Python capa VS hexcopy-ida

IDA plugin for quickly copying disassembly as encoded hex bytes
STrace

2 308 7.8 C++ capa VS STrace

A DTrace on Windows Reimplementation (by mandiant)
WorkOS

workos.com sponsored

The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
gsoc

2 444 8.4 TeX capa VS gsoc

NumFOCUS Google Summer of Code Materials

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better capa alternative or higher similarity.

Suggest an alternative to capa

capa reviews and mentions

Posts with mentions or reviews of capa. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-06-11.

N00bs Night Malware RE Workshop with @c3rb3ru5d3d53c (OALABS)
5 projects | /r/Malware | 11 Jun 2023

Python3 Environment Basics For IDA Pro (Windows) https://www.patreon.com/posts/python3-basics-58467121 Hexcopy (save a click) https://github.com/OALabs/hexcopy-ida HashDB https://github.com/OALabs/hashdb-ida Flare-IDA https://github.com/mandiant/flare-ida Capa https://github.com/mandiant/capa Capa Rules https://github.com/mandiant/capa-rules BinDiff https://www.youtube.com/watch?v=BLBjcZe-C3I
How to analyze malicious PDF?
1 project | /r/AskNetsec | 12 May 2023

You can detonate it into a VM running an instance of Cuckoo Sandbox. If you want to go the extra mile, you can dump the memory of said VM and analyse it with Volatility Framework. Also, if you want to quickly identify behavioural patterns in executable code, you can use Mandiant's CAPA tool (though idk if it works on .pdfs).