Skip to content

@CAPESandbox CAPE Sandbox

Change the repository type filter

All

    Repositories list

    16 repositories

    • rat_king_parser

      Public
      A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno RAT, and cloned/derivative RAT families.
      Python
      MIT License
      10000Updated Jan 7, 2026Jan 7, 2026

    • CAPE-parsers

      Public
      CAPE core and community parsers
      Python
      MIT License
      121700Updated Jan 6, 2026Jan 6, 2026

    • community

      Public
      Community modules for CAPE Sandbox
      Python
      5910802Updated Jan 2, 2026Jan 2, 2026

    • sflock

      Public
      Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
      Python
      551201Updated Dec 17, 2025Dec 17, 2025

    • CAPE-TestFiles

      Public
      Files that we use for unit testing
      7100Updated Dec 10, 2025Dec 10, 2025

    • CAPEsolo

      Public
      Python
      2800Updated Nov 25, 2025Nov 25, 2025

    • tracy

      Public
      tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
      C
      Do What The F*ck You Want To Public License
      26100Updated Feb 11, 2025Feb 11, 2025

    • CAHI

      Public
      CAPE Auto-Hardened Installer
      Jinja
      Other
      52400Updated Feb 11, 2025Feb 11, 2025

    • pyattck

      Public
      A Python package to interact with the Mitre ATT&CK Framework
      Python
      MIT License
      94000Updated Feb 10, 2025Feb 10, 2025

    • binGraph

      Public
      Simple tool to graph files for quick analysis
      Python
      GNU Affero General Public License v3.0
      11000Updated Feb 6, 2025Feb 6, 2025

    • pyattck-data

      Public
      This repository contains generated contextual data utilized by pyattck.
      Python
      MIT License
      16100Updated Feb 6, 2025Feb 6, 2025

    • capemon-hook-generator

      Public
      CAPEv2 (capemon) hook skeleton generator (hookdefs) for your malware analysis needs.
      windowsapihookshooksandboxmalwaremalware-analysismalware-researchwindowsapimalware-samples
      Python
      GNU General Public License v3.0
      0100Updated Dec 16, 2024Dec 16, 2024

    • CAPESandbox.github.io

      Public
      0000Updated Oct 15, 2024Oct 15, 2024

    • httpreplay

      Public
      Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.
      Python
      Other
      39200Updated May 15, 2024May 15, 2024

    • socks5man

      Public
      Socks5man is a Socks5 management tool and Python library
      Python
      GNU General Public License v3.0
      7200Updated Apr 5, 2024Apr 5, 2024

    • pyre2

      Public
      Python wrapper for RE2
      Python
      BSD 3-Clause "New" or "Revised" License
      178000Updated Mar 1, 2023Mar 1, 2023