William Ballenthin
ffd926c84c
scripts: migrate-rules: detect rules that aren't in the migration plan
2020-06-22 06:59:10 -06:00
Moritz Raabe
b466087c97
add submodule doc
2020-06-22 12:48:53 +02:00
Ana María Martínez Gómez
96ad823e35
Add hooks for running linters and tests
...
Add the `scripts/setup-hooks.sh` script which sets the following hooks
up:
- The `post-commit` hook runs the linter after every `git commit`,
letting you know if there are code style or rule linter offenses you
need to fix.
- The `pre-push` hook runs the linter and the tests and block the `git
push` if they do not succeed.
This way you realise if everything is alright without the need of
sending a PR.
2020-06-22 11:35:45 +02:00
William Ballenthin
5eddc9d3f4
scripts: migrate-rules: parse ATT&CK from tag name
2020-06-21 17:59:16 -06:00
Willi Ballenthin
8f097b883c
Merge pull request #25 from fireeye/rule-organization
...
apply rule reorganization
2020-06-25 13:42:38 -06:00
William Ballenthin
c06a1dae8a
scripts: migrate-rules: migrates rules pretty well
2020-06-21 17:40:16 -06:00
William Ballenthin
07daf3d46b
rule: fmt: support pulling meta from the rule instance
2020-06-21 16:57:58 -06:00
William Ballenthin
23037ad763
tests: fmt: fix expected format
2020-06-21 16:56:17 -06:00
William Ballenthin
7a81b739ea
Merge branch 'master' into rule-organization
2020-06-21 16:48:33 -06:00
William Ballenthin
e537aa3698
submodule: rules: update
2020-06-21 16:47:54 -06:00
William Ballenthin
c8eee01f31
rules: fmt: add additional meta field ordering
2020-06-21 16:43:24 -06:00
William Ballenthin
b3ca9f0daf
rule: fmt: add trailing newline to capa files
2020-06-21 15:51:11 -06:00
William Ballenthin
b23ff0358b
rules: pep8
2020-06-21 15:48:06 -06:00
William Ballenthin
2db385dd80
rule: fmt: avoid word wrapping lines
2020-06-21 15:47:29 -06:00
Willi Ballenthin
4f7e7d1b76
Merge pull request #22 from fireeye/capafmt
...
add capafmt utility
2020-06-25 08:55:26 -06:00
Willi Ballenthin
aa88840b5a
Merge pull request #15 from fireeye/ana-remove-element
...
Get rid of the Element class
2020-06-25 06:50:50 -06:00
Moritz
4a5625fa8a
Merge pull request #16 from fireeye/documentation-scan
...
documentation changes
2020-06-25 10:38:54 +02:00
Moritz Raabe
ee3a688e1b
update rules
2020-06-25 10:10:58 +02:00
Michael Hunhoff
b505197af1
documentation changes
2020-06-24 15:03:21 -06:00
Ana María Martínez Gómez
7e1e9e6618
Get rid of the Element class
...
The `Element` class is just used for testing. By using `Element` we are
not testing the actual code. Also, every time we implement a new feature
for the `Feature` class, we need to implement it for `Element` as well.
Replace `Element` by `Integer`.
2020-06-24 18:05:52 +02:00
Willi Ballenthin
130c766f65
Merge pull request #14 from fireeye/mr-tz-remove-six
...
remove six requirement
2020-06-24 08:28:21 -06:00
Moritz
bd92ded344
remove six requirement
2020-06-24 16:24:34 +02:00
William Ballenthin
fea1177c5e
add tests for formatting
2020-06-21 13:03:07 -06:00
William Ballenthin
09fa5a4227
rules: use ruamel to maintain comments
2020-06-21 12:24:32 -06:00
Willi Ballenthin
c8bcc154c5
Merge branch 'master' into capafmt
2020-06-25 07:47:25 -06:00
William Ballenthin
aa357855b8
capafmt: order meta/features consistently
2020-06-21 12:01:12 -06:00
William Ballenthin
3bc6c5805f
capafmt: use yaml parser that supports comments to reformat
2020-06-21 11:53:15 -06:00
William Ballenthin
56536792f8
capafmt: initial impl
2020-06-21 11:37:33 -06:00
William Ballenthin
c4833fb731
scripts: add migrate-rules snapshot
2020-06-20 09:13:23 -06:00
William Ballenthin
60d7c87379
sync testfiles
2020-06-18 11:30:01 -06:00
William Ballenthin
add3537447
import source files, forgetting about 938 prior commits
2020-06-18 09:13:19 -06:00
William Ballenthin
f2d795090c
sync rules
2020-06-18 07:28:30 -06:00
William Ballenthin
b7bb912f46
update submodules
2020-06-17 16:15:16 -06:00
William Ballenthin
632e5b23f6
init
2020-06-17 16:08:47 -06:00
