Data to test capa's code and rules.
☆47Feb 17, 2026Updated last month
Alternatives and similar repositories for capa-testfiles
Users that are interested in capa-testfiles are comparing it to the libraries listed below
Sorting:
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆701Mar 12, 2026Updated last week
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- THOR Thunderstorm Collectors☆25Mar 14, 2026Updated last week
- ☆17Nov 3, 2017Updated 8 years ago
- Cybersecurity Incidents Mind Maps☆34Sep 29, 2021Updated 4 years ago
- ☆22Aug 31, 2025Updated 6 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆58Mar 2, 2025Updated last year
- Anything related to Ghidra☆12Apr 22, 2019Updated 6 years ago
- Summarize CTI reports with OpenAI☆18Updated this week
- Site for IWS book content☆17Oct 28, 2018Updated 7 years ago
- ☆21Apr 19, 2024Updated last year
- A bunch of tricks and configs to configure a work environment for web pentesting☆13Oct 1, 2018Updated 7 years ago
- Cockroach is your primitive & immortal swiss army knife.☆48Dec 8, 2021Updated 4 years ago
- An API Monitor based on Instrumentation☆43Dec 19, 2017Updated 8 years ago
- Simple tool to extract icons from a pe file and other useful information☆13Jun 22, 2018Updated 7 years ago
- A small library to extend the functionality of GetModuleHandle and GetProcAddress to other processes☆16Mar 23, 2020Updated 5 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Sep 4, 2018Updated 7 years ago
- C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin☆23Aug 21, 2023Updated 2 years ago
- Scripts and lists to help generate YARA friendly string mutations☆22Apr 9, 2023Updated 2 years ago
- Linux-KVM with rVMI extensions☆22Aug 28, 2017Updated 8 years ago
- x64dbg Malware Plugin. Detect malicious materials☆16Jun 13, 2020Updated 5 years ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,890Updated this week
- Collection of rules created using YARA-Signator over Malpedia☆142Jan 6, 2026Updated 2 months ago
- Code snippets for Qiling Tutorials☆21Aug 22, 2020Updated 5 years ago
- XOR Key Extractor☆51Aug 10, 2024Updated last year
- WIP python3 plugin for x64dbg☆16Mar 31, 2021Updated 4 years ago
- ☆50Aug 11, 2023Updated 2 years ago
- ☆26Nov 20, 2019Updated 6 years ago
- ☆49Jan 13, 2020Updated 6 years ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆15Jul 27, 2020Updated 5 years ago
- Ansible configurations for distributed MultiScanner installations☆14Apr 11, 2019Updated 6 years ago
- ☆24Aug 30, 2019Updated 6 years ago
- Go bindings for YARA☆14Aug 24, 2025Updated 6 months ago
- Yara Plugin for Binary Ninja☆13Feb 13, 2018Updated 8 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Apr 13, 2017Updated 8 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Poison Ivy Appendix/Extras☆18Aug 21, 2013Updated 12 years ago
- HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…☆86Jun 27, 2024Updated last year
- ☆35Jan 13, 2026Updated 2 months ago