File Capability Extractor
☆14Jul 12, 2025Updated 7 months ago
Alternatives and similar repositories for capa-rs
Users that are interested in capa-rs are comparing it to the libraries listed below
Sorting:
- Scanner for certain IoCs☆11Jan 29, 2025Updated last year
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 5 months ago
- Forensic framework to build tools that can be reused in multiple projects without changing anything☆31Oct 17, 2025Updated 4 months ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Generate MAEC XML from Ero Carrera's pefile output☆15Mar 6, 2017Updated 8 years ago
- A library implementing a generic SQL like query language.☆21Sep 15, 2025Updated 5 months ago
- A golang implementation of a prefetch parser.☆20Oct 27, 2025Updated 4 months ago
- ☆16Jan 31, 2015Updated 11 years ago
- Rust bindings for VirusTotal/Yara☆80Nov 19, 2025Updated 3 months ago
- Python API for the LimaCharlie.io service.☆21Feb 26, 2026Updated last week
- Get the process name or process id on windows☆20Jun 1, 2025Updated 9 months ago
- Proof-of-Concept exploits for CVE-2017-11882☆41Jan 2, 2018Updated 8 years ago
- clean interface for the windows event log☆26Jun 8, 2024Updated last year
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆28Apr 22, 2023Updated 2 years ago
- Malware detonation platform Polygon integration☆10Aug 1, 2023Updated 2 years ago
- ☆12Dec 14, 2016Updated 9 years ago
- Minimal C port of UTF8-CPP☆12Jun 2, 2019Updated 6 years ago
- Powershell to read ETL file on an interval and convert it to an EVTX (so Windows Event Forwarding can 'subscribe')☆11May 16, 2017Updated 8 years ago
- A clone of FD (File & Directory tool) by T.Shirai☆16Jan 29, 2014Updated 12 years ago
- Basic tool to automate backdooring PE files☆56Feb 24, 2022Updated 4 years ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆44Jun 6, 2022Updated 3 years ago
- Windows device tree walker☆15Sep 19, 2018Updated 7 years ago
- Library and tools to access the GUID Partition Table (GPT) volume system format☆11Dec 20, 2025Updated 2 months ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- emoji for golang☆10Aug 7, 2014Updated 11 years ago
- Experimental linux kernel module to mirror evdev inputs☆16Aug 1, 2020Updated 5 years ago
- A Portable Executable parser for Golang☆48Nov 7, 2025Updated 3 months ago
- Rust crate for accessing keys, values, and data stored in Windows hive (registry) files.☆51Jan 21, 2025Updated last year
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- How to add direction and language metadata to strings☆14Oct 28, 2025Updated 4 months ago
- An SMB library in Go☆13Oct 27, 2022Updated 3 years ago
- A nim variant of the code for the modern robotics book☆10Dec 5, 2020Updated 5 years ago
- Kippo configured to be a backdoored netscreen☆11Dec 22, 2015Updated 10 years ago
- A Mobicore Trustlet/Driver Binary Loader for Ghidra☆13Jul 10, 2019Updated 6 years ago
- TLD records archive. Revisiting the original TLDR project by mandatoryprogrammer, on the hunt for more root nameserver changes.☆11Dec 4, 2022Updated 3 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆17Oct 8, 2016Updated 9 years ago
- Tools and dumps related to the Smishing Triad and the USPS smishing campaign from late 2023 into 2024☆11Apr 28, 2024Updated last year
- ☆10Jan 16, 2021Updated 5 years ago