Capa is a tool that detects capabilities in executable files, providing insights into what a program can do, such as installing services, relying on HTTP to communicate, or being a backdoor. It supports various file formats, including PE, ELF, .NET, and shellcode files. Capa provides a detailed report of the capabilities of a given executable, including ATT&CK tactics and techniques, and can be used to analyze CAPE sandbox reports for dynamic capability extraction.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
Real-time, eBPF-based Security Observability and Runtime Enforcement component
IronBee is an open source project building a universal web application security sensor.
ffufai is an AI-enhanced wrapper for ffuf that automatically suggests file extensions for web fuzzing based on the target URL and headers.
Automated framework for monitoring and tampering system API calls of native macOS, iOS, and Android apps.
OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application for client-server communication with numerous vulnerabilities.
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.