ch0ic3/awesome-malware-analysis
1
0
Fork 0
mirror of https://github.com/rshipp/awesome-malware-analysis.git synced 2024-12-18 18:26:09 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Move capa to Detection and Classification section

Browse Source
This commit is contained in:
Herman Slatman 2020-07-18 00:05:52 +02:00
parent f89a440b09
commit 0565cbd96f
No known key found for this signature in database
GPG Key ID: F4D8A44EA0A75A4F
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -226,6 +226,7 @@ View Chinese translation: [恶意软件分析大合集.md](恶意软件分析大
* [BinaryAlert](https://github.com/airbnb/binaryalert) - An open source, serverless * [BinaryAlert](https://github.com/airbnb/binaryalert) - An open source, serverless
AWS pipeline that scans and alerts on uploaded files based on a set of AWS pipeline that scans and alerts on uploaded files based on a set of
YARA rules. YARA rules.
* [capa](https://github.com/fireeye/capa) - Detects capabilities in executable files.
* [chkrootkit](http://www.chkrootkit.org/) - Local Linux rootkit detection. * [chkrootkit](http://www.chkrootkit.org/) - Local Linux rootkit detection.
* [ClamAV](http://www.clamav.net/) - Open source antivirus engine. * [ClamAV](http://www.clamav.net/) - Open source antivirus engine.
* [Detect It Easy(DiE)](https://github.com/horsicq/Detect-It-Easy) - A program for * [Detect It Easy(DiE)](https://github.com/horsicq/Detect-It-Easy) - A program for
@ -535,7 +536,6 @@ the [browser malware](#browser-malware) section.*
that is an alternative to IDA. that is an alternative to IDA.
* [Binwalk](https://github.com/devttys0/binwalk) - Firmware analysis tool. * [Binwalk](https://github.com/devttys0/binwalk) - Firmware analysis tool.
* [BluePill](https://github.com/season-lab/bluepill) - Framework for executing and debugging evasive malware and protected executables. * [BluePill](https://github.com/season-lab/bluepill) - Framework for executing and debugging evasive malware and protected executables.
* [capa](https://github.com/fireeye/capa) - Detects capabilities in executable files.
* [Capstone](https://github.com/aquynh/capstone) - Disassembly framework for * [Capstone](https://github.com/aquynh/capstone) - Disassembly framework for
binary analysis and reversing, with support for many architectures and binary analysis and reversing, with support for many architectures and
bindings in several languages. bindings in several languages.