-
Notifications
You must be signed in to change notification settings - Fork 567
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CAPE traced APIs vs. rule APIs #1843
Labels
dynamic
related to dynamic analysis flavor
Comments
Some current stats on our feature APIs vs. what's traced in CAPE. traced: 102 Many more are there, but are traced at a lower level: e.g. LdrGetProcedureAddress instead of GetProcAddress.
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
...
Sidebar: We'll also have to double check which APIs (at which level, e.g. ntdll vs. kernel32) are traced and potentially update various rules.
...
Originally posted by @mr-tz in #1815 (comment)
In addition to 1. above we should 2. work with the CAPE devs to get more APIs traced.
The text was updated successfully, but these errors were encountered: