mirror of
https://github.com/mandiant/capa.git
synced 2026-07-02 11:00:02 -07:00
Update README.md
This commit is contained in:
@@ -7,6 +7,8 @@ capa detects capabilities in executable files.
|
||||
You run it against a PE file or shellcode and it tells you what it thinks the program can do.
|
||||
For example, it might suggest that the file is a backdoor, is capable of installing services, or relies on HTTP to communicate.
|
||||
|
||||
Check out the overview in our first [capa blog post](https://www.fireeye.com/blog/threat-research/2020/07/capa-automatically-identify-malware-capabilities.html).
|
||||
|
||||
```
|
||||
$ capa.exe suspicious.exe
|
||||
|
||||
|
||||
Reference in New Issue
Block a user