Alternatives and similar repositories for capa-testfiles:

Users that are interested in capa-testfiles are comparing it to the libraries listed below

• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆47Updated 3 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆50Updated 11 months ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆49Updated 6 years ago
• jstrosch / graph-maldoc-similar-images
  A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…
  ☆20Updated 3 years ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆70Updated 2 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆38Updated last year
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆35Updated last year
• Dump-GUY / ghidra_scripts
  ☆67Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆93Updated 3 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• bootkitsbook / bootkits
  ☆63Updated 5 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆113Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 4 years ago
• mauronz / binja-emotet
  ☆18Updated 4 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆68Updated 10 months ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• danielplohmann / docker-mcrit
  Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)
  ☆15Updated this week
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 4 months ago
• OALabs / hashdb-ghidra
  Ghidra plugin for HashDB
  ☆19Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated 10 months ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆63Updated 3 years ago
• PimmyTrousers / malpedia_cli
  Commandline utility to interact with the Malpedia service
  ☆22Updated 5 years ago
• stoerchl / yara_zip_module
  ☆13Updated 2 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 3 years ago
• lsoumille / Yara_Merger
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆28Updated 6 years ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆48Updated last year