search

mandiant / capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs
https://github.com/mandiant/capa/
Apache License 2.0
514 stars 157 forks source link

resolve Microsoft.Win32.Win32Native to execute native Windows APIs in .NET #876

Open mike-hunhoff opened 7 months ago

mike-hunhoff commented 7 months ago 
- and:
  - api: System.Reflection.Assembly::GetType
  - string: "Microsoft.Win32.Win32Native"