Skip to content
@mandiant

MANDIANT

Pinned Loading

  1. capa capa Public

    The FLARE team's open-source tool to identify capabilities in executable files.

    Python 5.8k 660

  2. flare-vm flare-vm Public

    A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

    PowerShell 8.4k 1.1k

  3. flare-floss flare-floss Public

    FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

    Python 3.9k 517

  4. commando-vm commando-vm Public

    Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com

    PowerShell 7.5k 1.3k

  5. Vulnerability-Disclosures Vulnerability-Disclosures Public

    C++ 214 69

Repositories

Showing 10 of 101 repositories
  • speakeasy Public

    Windows kernel and user mode emulation.

    mandiant/speakeasy’s past year of commit activity
    Python 1,857 MIT 274 43 (7 issues need help) 4 Updated Feb 23, 2026
  • dncil Public

    The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.

    mandiant/dncil’s past year of commit activity
    Python 171 Apache-2.0 19 2 (1 issue needs help) 3 Updated Feb 23, 2026
  • xrefer Public

    FLARE Team's Binary Navigator

    mandiant/xrefer’s past year of commit activity
    Python 308 Apache-2.0 42 9 5 Updated Feb 23, 2026
  • flare-floss Public

    FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

    mandiant/flare-floss’s past year of commit activity
    Python 3,891 Apache-2.0 517 94 (2 issues need help) 18 Updated Feb 22, 2026
  • capa Public

    The FLARE team's open-source tool to identify capabilities in executable files.

    mandiant/capa’s past year of commit activity
    Python 5,835 Apache-2.0 660 238 (7 issues need help) 34 Updated Feb 22, 2026
  • capa-rules Public

    Standard collection of rules for capa: the tool for enumerating the capabilities of programs

    mandiant/capa-rules’s past year of commit activity
    693 Apache-2.0 218 123 (7 issues need help) 11 Updated Feb 19, 2026
  • VM-Packages Public

    Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.

    mandiant/VM-Packages’s past year of commit activity
    PowerShell 217 Apache-2.0 95 109 17 Updated Feb 19, 2026
  • capa-testfiles Public

    Data to test capa's code and rules.

    mandiant/capa-testfiles’s past year of commit activity
    Max 47 Apache-2.0 82 0 5 Updated Feb 17, 2026
  • GoReSym Public

    Go symbol recovery tool

    mandiant/GoReSym’s past year of commit activity
    Go 929 MIT 93 10 (2 issues need help) 2 Updated Feb 17, 2026
  • macos-UnifiedLogs Public

    A cross platform parser for Apple UnifiedLogs!

    mandiant/macos-UnifiedLogs’s past year of commit activity
    Rust 329 Apache-2.0 41 5 2 Updated Feb 15, 2026
View all repositories