FLARE Capa, Identifies Malware Capabilities Automatically

Capa is FLARE’s latest open-source malware analysis tool. Google Cloud platform lets the community encode, identify, and exchange malicious behaviors

It uses decades of reverse engineering knowledge to find out what a program performs, regardless of your background

However, basic malware analysis skills are needed to determine whether a software is harmful, its participation in an assault, and its prospective capabilities

Malware analysis is seldom simple. A binary with hundreds or thousands of functions might propagate intent artifacts

Its two major components algorithmically triage unknown programs. First, a code analysis engine collects text, disassembly, and control flow from files

Second, a logic engine identifies rule-based feature pairings. When the logic engine matches, it reports the rule’s capability

Google cloud believe capa benefits the community and welcome any contribution. Google cloud appreciate criticism, suggestions, and pull requests. Starting with the contributing document is ideal