CAPESandbox/community external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CAPESandbox/community

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CAPESandbox/community)

Close

CAPESandbox / communityView on GitHubMore

• External links
• Readme badge

Community modules for CAPE Sandbox

☆111Mar 11, 2026Updated last week

Alternatives and similar repositories for community

Users that are interested in community are comparing it to the libraries listed below

• kevoreilly / capemon

  View on GitHub
  capemon: CAPE's monitor
  ☆146Updated this week
• kevoreilly / CAPEv2

  View on GitHub
  Malware Configuration And Payload Extraction
  ☆3,082Updated this week
• CybercentreCanada / Maco

  View on GitHub
  Maco - Malware config extractor framework
  ☆45Mar 13, 2026Updated last week
• CERT-Polska / drakvuf-sandbox

  View on GitHub
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,278Mar 1, 2026Updated 3 weeks ago
• reversinglabs / reversinglabs-yara-rules

  View on GitHub
  ReversingLabs YARA Rules
  ☆900Nov 3, 2025Updated 4 months ago
• cert-ee / cuckoo3

  View on GitHub
  Cuckoo3 is a Python 3 open source automated malware analysis system.
  ☆807Feb 5, 2026Updated last month
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆379Jan 28, 2026Updated last month
• anyrun / blog-scripts

  View on GitHub
  ☆35Jan 13, 2026Updated 2 months ago
• mandiant / capa-rules

  View on GitHub
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆701Mar 12, 2026Updated last week
• elceef / yara-rulz

  View on GitHub
  Collection of generic YARA rules
  ☆16Updated this week
• fxb-cocacoding / yara-signator

  View on GitHub
  Automatic YARA rule generation for Malpedia
  ☆168Sep 8, 2022Updated 3 years ago
• stoerchl / yara_zip_module

  View on GitHub
  ☆13Oct 21, 2022Updated 3 years ago
• doomedraven / Tools

  View on GitHub
  Combination of different utilities, have fun!
  ☆223Feb 5, 2024Updated 2 years ago
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆142Jan 6, 2026Updated 2 months ago
• c3rb3ru5d3d53c / mwcfg

  View on GitHub
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆132Nov 25, 2023Updated 2 years ago
• tklengyel / drakvuf

  View on GitHub
  DRAKVUF Black-box Binary Analysis
  ☆1,211Mar 5, 2026Updated 2 weeks ago
• hatching / vmcloak

  View on GitHub
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆516May 14, 2024Updated last year
• CERT-Polska / karton

  View on GitHub
  Distributed malware processing framework based on Python, Redis and S3.
  ☆465Updated this week
• jymcheong / OpenEDR

  View on GitHub
  Renamed to Free EDR to avoid confusion with Comodo's project
  ☆26May 29, 2023Updated 2 years ago
• n1ght-w0lf / HawkEye

  View on GitHub
  Malware dynamic instrumentation tool based on frida framework
  ☆110Jun 7, 2020Updated 5 years ago
• intezer / analyze-python-sdk

  View on GitHub
  Basic SDK for Intezer Analyze API 2.0
  ☆32Mar 11, 2026Updated last week
• ManasMahapatra / cuckoo-macOS

  View on GitHub
  This repository is a part of GSoC Project 2019 which intends to add the macOS support for Cuckoo Sandbox. This repository helps setting u…
  ☆11Aug 26, 2019Updated 6 years ago
• CERT-Polska / mtracker

  View on GitHub
  ☆16Mar 12, 2026Updated last week
• danielplohmann / idascope

  View on GitHub
  An IDA Pro extension for easier (malware) reverse engineering
  ☆116Aug 2, 2022Updated 3 years ago
• splunk / PPLinject

  View on GitHub
  Inject unsigned DLL into Protected Process Light (PPL)
  ☆41May 8, 2025Updated 10 months ago
• snemes / malware-analysis

  View on GitHub
  ☆23Aug 1, 2020Updated 5 years ago
• Neo23x0 / yarGen-Go

  View on GitHub
  A YARA rule generator
  ☆70Feb 8, 2026Updated last month
• DissectMalware / XLMMacroDeobfuscator

  View on GitHub
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆585May 5, 2024Updated last year
• NexusFuzzy / AzoDecrypt

  View on GitHub
  Script which is able to decrypt data sent to AzoRult 3.3 Server
  ☆11Feb 5, 2021Updated 5 years ago
• jbremer / agent

  View on GitHub
  Cuckoo Agent.
  ☆23Feb 25, 2019Updated 7 years ago
• mnrkbys / norimaci

  View on GitHub
  Norimaci is a simple and lightweight malware analysis sandbox for macOS
  ☆71Mar 3, 2020Updated 6 years ago
• JPCERTCC / MalConfScan

  View on GitHub
  Volatility plugin for extracts configuration data of known malware
  ☆495Dec 22, 2023Updated 2 years ago
• CERT-Polska / hfinger

  View on GitHub
  Hfinger - fingerprinting HTTP requests
  ☆143May 16, 2023Updated 2 years ago
• Necrosys / zerowine-tryout

  View on GitHub
  Zero Wine Tryouts: An open source malware analysis tool
  ☆17Jun 7, 2016Updated 9 years ago
• RandomRhythm / YARA_Rules_Util

  View on GitHub
  YARA duplicate rule detection and removal. YARA rule index creation. YARA rule file merger.
  ☆10Jan 19, 2026Updated 2 months ago
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆627Mar 18, 2025Updated last year
• LetMeR00t / TA-thehive-cortex

  View on GitHub
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆54Updated this week
• CAPESandbox / CAPE-parsers

  View on GitHub
  CAPE core and community parsers
  ☆18Feb 9, 2026Updated last month
• hatching / triage

  View on GitHub
  Hatching Triage public command-line utility and API library.
  ☆75Oct 9, 2023Updated 2 years ago