awesome-repositories.com
Blog
awesome-repositories.com

Descubre los mejores repositorios open-source con nuestra búsqueda potenciada por IA.

ExplorarBúsquedas curadasAlternativas open-sourceSoftware autohospedableBlogMapa del sitio
ProyectoAcerca deCómo clasificamosPrensaServidor MCP
Aviso legalPrivacidadTérminos
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

2 repositorios

Awesome GitHub RepositoriesIDA Pro Binary Analysis

Binary analysis that surfaces capability matches and rule authoring features directly within the IDA Pro disassembler.

Distinct from Binary Analysis Capabilities: Distinct from Binary Analysis Capabilities: specifically integrates with IDA Pro for analysis rather than general binary inspection tools.

Explore 2 awesome GitHub repositories matching operating systems & systems programming · IDA Pro Binary Analysis. Refine with filters or upvote what's useful.

Awesome IDA Pro Binary Analysis GitHub Repositories

Encuentra los mejores repositorios con IA.Buscaremos los repositorios que mejor coincidan usando IA.
  • mandiant/capaAvatar de mandiant

    mandiant/capa

    6,062Ver en GitHub↗

    capa is a binary capability scanner that identifies high-level behaviors and actions an executable can perform, such as network communication or file manipulation. It functions as a malware behavior analysis tool and a MITRE ATT&CK mapping framework, scanning PE, ELF, .NET, and shellcode files through both static analysis and dynamic sandbox report processing. The tool distinguishes itself through a YAML-based detection rule engine that defines detection logic in human-readable files, with conditions expressed as feature combinations and logical operators. It integrates with IDA Pro, Ghidra,

    Integrates with IDA Pro to highlight capability matches and navigate to relevant code.

    Python
    Ver en GitHub↗6,062
  • fireeye/capaAvatar de fireeye

    fireeye/capa

    6,062Ver en GitHub↗

    capa is a static analysis tool that scans executable files to identify what a program can do, detecting capabilities such as API calls, byte sequences, and structural patterns without executing the code. It supports multiple file formats including PE, ELF, .NET, and shellcode, and can also process runtime behavior traces from sandbox reports generated by CAPE, DRAKVUF, or VMRay. The tool integrates directly with reverse engineering environments through plugins for IDA Pro and Ghidra, allowing analysts to view capability matches and author detection rules within their disassembler of choice. C

    Integrates capability detection and rule authoring directly within the IDA Pro disassembler interface.

    Python
    Ver en GitHub↗6,062
  1. Home
  2. Operating Systems & Systems Programming
  3. Binary Analysis Capabilities
  4. IDA Pro Binary Analysis

Explorar subetiquetas

  • PluginsPlugins that integrate capability detection and rule authoring directly within the IDA Pro disassembler interface. **Distinct from IDA Pro Binary Analysis:** Distinct from IDA Pro Binary Analysis: focuses specifically on the plugin that enables analysis within IDA Pro, not the general binary analysis capability.