Capa is FLARE’s latest open-source malware analysis tool. Google Cloud platform lets the community encode, identify, and exchange malicious behaviors
It uses decades of reverse engineering knowledge to find out what a program performs, regardless of your background
However, basic malware analysis skills are needed to determine whether a software is harmful, its participation in an assault, and its prospective capabilities
Malware analysis is seldom simple. A binary with hundreds or thousands of functions might propagate intent artifacts
Its two major components algorithmically triage unknown programs. First, a code analysis engine collects text, disassembly, and control flow from files
Second, a logic engine identifies rule-based feature pairings. When the logic engine matches, it reports the rule’s capability
Google cloud believe capa benefits the community and welcome any contribution. Google cloud appreciate criticism, suggestions, and pull requests. Starting with the contributing document is ideal