Issues: mandiant/capa-rules
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
parse-credit-card-information -> mimikatz.exe_:0x444E02
false positive
False positive rule hit
#897
opened May 3, 2024 by
mike-hunhoff
resolve Microsoft.Win32.Win32Native to execute native Windows APIs in .NET
rule idea
#876
opened Jan 17, 2024 by
mike-hunhoff
synchronized fn callback execution (extend create-thread.yml)?
rule idea
#872
opened Jan 12, 2024 by
mike-hunhoff
restrict to
os: android
? or maybe the name and API namespace are sufficient?
#849
opened Nov 22, 2023 by
mike-hunhoff
null-preserving XOR not identified
enhancement
New feature or request
#840
opened Nov 6, 2023 by
Ana06
CI: lint max length of bytes feature
CI
Continous integration
documentation
Improvements or additions to documentation
enhancement
New feature or request
#747
opened Apr 17, 2023 by
mike-hunhoff
CI: lint hex values to enforce consistent capitalization
CI
Continous integration
documentation
Improvements or additions to documentation
enhancement
New feature or request
#746
opened Apr 17, 2023 by
mike-hunhoff
HardHat C2 Detections
good first issue
Good for newcomers
rule idea
#742
opened Mar 31, 2023 by
mike-hunhoff
add reference to capa install instructions to PR suggestions
documentation
Improvements or additions to documentation
#727
opened Mar 20, 2023 by
mike-hunhoff
detect uncommon .NET entry points
good first issue
Good for newcomers
rule idea
#725
opened Mar 16, 2023 by
mike-hunhoff
Cleanup Nt* and Zw* api definitions
enhancement
New feature or request
question
Further information is requested
#720
opened Mar 11, 2023 by
mr-tz
Previous Next
ProTip!
Updated in the last three days: updated:>2024-05-20.