Alternatives and similar repositories for capa-rs:

Users that are interested in capa-rs are comparing it to the libraries listed below

• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated last month
• Hugal31 / yara-rust
  Rust bindings for VirusTotal/Yara
  ☆76Updated 2 months ago
• theflakes / Evil_DLL
  Simple DLL to test various injection methods.
  ☆51Updated 4 years ago
• ex0dus-0x / binsec
  Binary (In)security tool
  ☆25Updated 11 months ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated last month
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆70Updated 2 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated 3 months ago
• 0xcpu / bonomen
  BONOMEN - Hunt for Malware Critical Process Impersonation
  ☆48Updated 4 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆100Updated 2 years ago
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆49Updated 3 years ago
• williballenthin / lancelot
  intel x86(-64) code analysis library that reconstructs control flow
  ☆103Updated 2 months ago
• rustysec / fuzzyhash-rs
  Pure Rust fuzzy hash implementation
  ☆22Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆71Updated last year
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆17Updated 4 years ago
• vthib / boreal
  Safe and performant YARA rules evaluator in Rust
  ☆47Updated 2 weeks ago
• coreos / vmw_backdoor-rs
  A pure-Rust library for VMware host-guest protocol ("VMXh backdoor")
  ☆16Updated last month
• s3rvac / vim-syntax-yara
  A Vim syntax highlighting for YARA rules
  ☆31Updated 5 months ago
• spiderpig1297 / kprochide
  kprochide is an LKM for hiding processes from the userland. The module is able to hide multiple processes and is able to dynamically rece…
  ☆21Updated 4 years ago
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆22Updated 11 months ago
• djhohnstein / librarian
  Shared library loading application for Linux written in Go.
  ☆16Updated 4 years ago
• mandiant / vivisect
  pure Python binary analysis framework
  ☆23Updated 6 years ago
• JannisKirschner / Cutter-Yara-Plugin
  Apply YARA rules to your Cutter projects.
  ☆16Updated 5 years ago
• forensicmatt / libtsk-rs
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆11Updated 2 years ago
• ForensicRS / forensic-rs
  Forensic framework to build tools that can be reused in multiple projects without changing anything
  ☆27Updated 2 months ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆24Updated 6 months ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 6 years ago
• ninewayhandshake / capa-explorer
  capa explorer for Cutter.
  ☆45Updated 3 years ago
• yaunj / vim-yara
  Yara filetype plugin for Vim.
  ☆14Updated 4 years ago
• avast / yls
  YARA Language Server
  ☆71Updated this week