gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-12 15:49:46 -08:00
Code Issues Packages Projects Releases Wiki Activity
5,634 Commits 43 Branches 48 Tags
codecut
Commit Graph

5634 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Willi Ballenthin
d89083ab31 wip 2025-01-15 12:09:17 +00:00
Willi Ballenthin
891fa8aaa3 codecut: torch loader 2025-01-15 12:09:17 +00:00
Willi Ballenthin
e94147b4c2 codecut: import to torch 2025-01-15 12:09:17 +00:00
Willi Ballenthin
6fc4567f0c codecut: better graph structure 2025-01-15 12:09:17 +00:00
Willi Ballenthin
3b1a8f5b5a codecut: bulk generate graphs 2025-01-15 12:09:17 +00:00
Willi Ballenthin
f296e7d423 lints 2025-01-15 12:09:17 +00:00
Willi Ballenthin
3e02b67480 split codecut into subcommands 2025-01-15 12:09:17 +00:00
Willi Ballenthin
536526f61d use networkx for the graph 2025-01-15 12:09:16 +00:00
Willi Ballenthin
bcd2c3fb35 show-object-layout: make it generate a graph of code/data instead 2025-01-15 12:09:16 +00:00
Willi Ballenthin
f340b93a02 init show-object-layout using assemblage 2025-01-15 12:09:16 +00:00
Willi Ballenthin
8bd6f8b99a detect user code via entry points (main function name) 2025-01-15 12:09:16 +00:00
Willi Ballenthin
8b4d5d3d22 mute unknown lines 2025-01-15 12:09:16 +00:00
Willi Ballenthin
bc6e18ed85 consider thunks library functions 2025-01-15 12:09:16 +00:00
mr-tz
2426aba223 render from doc 2025-01-15 12:09:16 +00:00
mr-tz
405e189267 simplify and include thunks 2025-01-15 12:09:16 +00:00
mr-tz
cfb632edc8 remove Python 3.12 syntax 2025-01-15 12:09:16 +00:00
Willi Ballenthin
70c96a29b4 library-detection: add json output format 2025-01-15 12:09:16 +00:00
Willi Ballenthin
c005de0a0d library-detection: cleanup script 2025-01-15 12:09:16 +00:00
Moritz
8d42b14b20 Add LookupError exception 2025-01-15 12:09:16 +00:00
mr-tz
bad32b91fb init add result structure and render 2025-01-15 12:09:16 +00:00
mr-tz
9716da4765 add option to save idb 2025-01-15 12:09:16 +00:00
mr-tz
e0784f2e85 ease/document extra dependency 2025-01-15 12:09:16 +00:00
Willi Ballenthin
4a775bab2e library detection: rough integration of algorithms 2025-01-15 12:09:16 +00:00
Willi Ballenthin
2de7830f5e library detection: merge flirt and string branches 2025-01-15 12:09:16 +00:00
mr-tz
9d67e133c9 initial commit of out-of-the box flirt-based library id 2025-01-15 12:09:16 +00:00
Willi Ballenthin
fa18b4e201 initial attempt at library identification via known strings 2025-01-15 12:09:16 +00:00
Mike Hunhoff
c3c93685e2 vmray: skip non-printable strings (#2551) 2025-01-08 08:40:32 -07:00
Capa Bot
462e11443e Sync capa rules submodule 2025-01-07 20:03:05 +00:00
Moritz
32d6181f02 Merge pull request #2541 from mandiant/dependabot/npm_and_yarn/web/explorer/nanoid-3.3.8 
build(deps): bump nanoid from 3.3.7 to 3.3.8 in /web/explorer
 2024-12-17 14:29:32 +01:00
Moritz
6cf944b321 Merge pull request #2542 from mandiant/dependabot/pip/flake8-bugbear-24.12.12 
build(deps): bump flake8-bugbear from 24.10.31 to 24.12.12
 2024-12-17 14:29:19 +01:00
Moritz
369fbc713e Merge pull request #2538 from mandiant/williballenthin-patch-1 
readme: avoid scroll on github homepage
 2024-12-17 14:28:24 +01:00
Moritz
e3a1dbfac2 Merge pull request #2537 from mandiant/fix/vmray-improvements 
VMRay and dynamic improvements
 2024-12-17 14:27:52 +01:00
dependabot[bot]
e5fe935a8e build(deps): bump flake8-bugbear from 24.10.31 to 24.12.12 
Bumps [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) from 24.10.31 to 24.12.12.
- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases)
- [Commits](https://github.com/PyCQA/flake8-bugbear/compare/24.10.31...24.12.12)

---
updated-dependencies:
- dependency-name: flake8-bugbear
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-16 14:12:27 +00:00
dependabot[bot]
233f8dcf9f build(deps): bump nanoid from 3.3.7 to 3.3.8 in /web/explorer 
Bumps [nanoid](https://github.com/ai/nanoid) from 3.3.7 to 3.3.8.
- [Release notes](https://github.com/ai/nanoid/releases)
- [Changelog](https://github.com/ai/nanoid/blob/main/CHANGELOG.md)
- [Commits](https://github.com/ai/nanoid/compare/3.3.7...3.3.8)

---
updated-dependencies:
- dependency-name: nanoid
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-16 03:58:18 +00:00
mr-tz
51d606bc0d use default emptry list for ElfFileSection 2024-12-13 11:51:47 +00:00
Willi Ballenthin
2b46796d08 Update README.md 
Co-authored-by: Mike Hunhoff <mike.hunhoff@gmail.com>
 2024-12-12 18:49:39 +01:00
Willi Ballenthin
81f7f43b5b readme: avoid scroll on github homepage 2024-12-12 14:17:46 +01:00
mr-tz
1f34795fce vmray and dynamic updates 2024-12-12 10:12:14 +00:00
mr-tz
06f0012183 only check file limitations for static file formats 2024-12-12 10:10:35 +00:00
mr-tz
55720ddbfd make more fields optional for more flexible model 
tmp
 2024-12-12 10:10:32 +00:00
mr-tz
893378c10e record origin_monitor_id for more reliable process association 
tmp
 2024-12-12 09:51:08 +00:00
Moritz
1a82b9d0c5 Merge pull request #2536 from mandiant/release/v801 
update to v8.0.1
v8.0.1 		2024-12-09 18:11:38 +01:00
mr-tz
3cbc184020 update to v8.0.1 2024-12-09 16:19:30 +00:00
Moritz
347601a112 Merge pull request #2535 from mandiant/fix/ida-find_byte_sequence 
handle IDA 8.3/8.4 vs. 9.0 API change
 2024-12-09 17:11:33 +01:00
mr-tz
8a02b0773d handle IDA 8.3/8.4 vs. 9.0 API change 2024-12-09 15:06:38 +00:00
Moritz
f11661f8f2 release v8.0.0 (#2529) 
* update to v8.0.0

* update website v8.0.0
v8.0.0 		2024-12-09 14:15:46 +01:00
Capa Bot
518dc3381c Sync capa rules submodule 2024-12-09 10:30:27 +00:00
Willi Ballenthin
5c60adaf96 BinExport2: better handle weird Ghidra expressions 
analogous to the inspect-binexport2 issues reported in #2528 and #2530,
but this fixes the feature extractor.
 2024-12-09 11:27:11 +01:00
Willi Ballenthin
4ab8d75629 changelog 2024-12-09 11:27:11 +01:00
Willi Ballenthin
51d852d1b3 inspect-binexport: better handle MSRs exported by Ghidra 
closes #2530
 2024-12-09 11:27:11 +01:00