CAPA Logo

CAPA

0
Free
Visit Website

Capa is a tool that detects capabilities in executable files, providing insights into what a program can do, such as installing services, relying on HTTP to communicate, or being a backdoor. It supports various file formats, including PE, ELF, .NET, and shellcode files. Capa provides a detailed report of the capabilities of a given executable, including ATT&CK tactics and techniques, and can be used to analyze CAPE sandbox reports for dynamic capability extraction.

FEATURES

ALTERNATIVES

A webshell manager via terminal for controlling web servers running PHP or MySQL.

Drltrace is a dynamic API calls tracer for Windows and Linux applications.

A technology lookup and lead generation tool that identifies the technology stack of any website and provides features for market research, competitor analysis, and data enrichment.

Deliberately vulnerable web application for educational purposes.

OpenRASP directly integrates its protection engine into the application server by instrumentation, providing context-aware protection and detailed stack trace logging.

Cross-site scripting labs for web application security enthusiasts

A Dynamic Application Security Testing (DAST) platform that provides automated security testing for web applications, APIs, and LLM-powered applications throughout the software development lifecycle.

DOMPurify is a fast XSS sanitizer for HTML, MathML, and SVG.