gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-12 23:59:48 -08:00
Code Issues Packages Projects Releases Wiki Activity
2,735 Commits 43 Branches 48 Tags
91818a116de25c6208d398838c8143235382ac6a
Commit Graph

2735 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Willi Ballenthin
91818a116d scripts/capa_as_library: use new ResultDocument 
closes #1071
 2022-06-28 15:53:37 -06:00
Capa Bot
d35ac32f0a Sync capa rules submodule 2022-06-28 17:13:42 +00:00
Willi Ballenthin
cb6781a143 verbose: remove extraneous import 2022-06-28 11:11:00 -06:00
Willi Ballenthin
e7fa1ae52c Merge pull request #1068 from mandiant/feat-lint-dotnet-filename 
linter: expect file path "dotnet" for ".NET" rules
 2022-06-28 11:05:37 -06:00
Willi Ballenthin
8b7ddc5679 linter: expect file path "dotnet" for ".NET" rules 
ref: https://github.com/mandiant/capa-rules/pull/568#discussion_r908718249
 2022-06-28 10:48:03 -06:00
Willi Ballenthin
3323d85067 Merge pull request #1067 from mandiant/fix-966 
main: suppress low level ELF parsing log messages
 2022-06-28 10:46:32 -06:00
Willi Ballenthin
9019e6b0f5 main: suppress low level ELF parsing log messages 
closes #966
 2022-06-28 10:45:38 -06:00
Capa Bot
c6c2fc9f2a Sync capa rules submodule 2022-06-28 16:44:02 +00:00
Willi Ballenthin
6ea15901d6 Merge pull request #1064 from mandiant/mr-tz-patch-1 
Update README.md
 2022-06-28 10:42:44 -06:00
Willi Ballenthin
400e28c3f7 document rule branches (#1006) 
* doc: add rules documentation

* version: add accessor for capa major version and git checkout command

* doc: rules: document version output

* doc: rules: show example error due to mismatched rule version

* doc: rules: update links

* ci: tag major rule version test

* ci: tag major rule version

* doc: update changelog

* ci: force to replace tag if exists

* ci: simplify tagging step

* Update doc/rules.md

* feat: disable tag, show error branch cmd

* doc: update major version rules branch

* Apply suggestions from code review

Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>

* Update capa/main.py

* black

Co-authored-by: Moritz Raabe <moritz.raabe@mandiant.com>
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2022-06-28 18:38:51 +02:00
Moritz
f2281b8e6e Update README.md 2022-06-28 18:33:42 +02:00
Willi Ballenthin
ad88e51228 Merge pull request #1060 from mandiant/feat/frz-extractor-info 
Feat/frz extractor info
 2022-06-28 10:32:37 -06:00
Capa Bot
2b17b22d33 Sync capa rules submodule 2022-06-28 16:30:17 +00:00
Willi Ballenthin
da6f6dd94f Merge pull request #1063 from mandiant/fix-blog-links 
readme: fix blog links
 2022-06-28 10:30:08 -06:00
Willi Ballenthin
09d444222a readme: fix blog links 
closes #800
 2022-06-28 10:27:31 -06:00
Capa Bot
a5c9993b61 Sync capa rules submodule 2022-06-28 14:06:49 +00:00
Moritz
f03eb87892 Merge pull request #1059 from mandiant/fix/linter-refs-authors 
feat: lint check value types
 2022-06-28 15:57:39 +02:00
Moritz Raabe
a7c4761fef isort, black 2022-06-28 15:53:10 +02:00
Moritz Raabe
e2156c3854 refactor: parametrize test 2022-06-28 15:49:21 +02:00
Moritz Raabe
bf53958887 fix!: global feat frz address 2022-06-28 15:47:12 +02:00
Moritz Raabe
e4d532e212 feat!: add extractor info to frz format 2022-06-28 15:43:59 +02:00
Moritz Raabe
9bf582a89a feat: lint check value types 
closes #1027
 2022-06-28 12:53:31 +02:00
Capa Bot
79ce903817 Sync capa rules submodule 2022-06-23 13:27:54 +00:00
Willi Ballenthin
6fa8f9e401 Merge pull request #1052 from mandiant/dependabot/pip/colorama-0.4.5 
build(deps): bump colorama from 0.4.4 to 0.4.5
 2022-06-21 09:45:21 -06:00
Willi Ballenthin
fb99ef56e3 Merge pull request #986 from mandiant/feature-981 
add Address abstraction
 2022-06-21 09:44:57 -06:00
Willi Ballenthin
be2dffe863 bulk-process: use new ResultDocument json 2022-06-20 14:43:30 -06:00
Willi Ballenthin
e3804a0596 main: add types for collect_metadata 2022-06-20 14:43:18 -06:00
Willi Ballenthin
9ebea05933 show-capabilities-by-function: use new ResultDocument 2022-06-20 14:32:10 -06:00
Willi Ballenthin
a453258a51 tests: fix render test for MBC 2022-06-20 14:25:18 -06:00
Willi Ballenthin
246ef58e7b tests: fix render test for ATT&CK metadata 2022-06-20 14:24:01 -06:00
dependabot[bot]
d55d1facd5 build(deps): bump colorama from 0.4.4 to 0.4.5 
Bumps [colorama](https://github.com/tartley/colorama) from 0.4.4 to 0.4.5.
- [Release notes](https://github.com/tartley/colorama/releases)
- [Changelog](https://github.com/tartley/colorama/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/tartley/colorama/compare/0.4.4...0.4.5)

---
updated-dependencies:
- dependency-name: colorama
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-20 14:20:36 +00:00
William Ballenthin
a5979d3b4d Merge branch 'feature-981' of github.com:fireeye/capa into feature-981 2022-06-14 17:43:24 -06:00
William Ballenthin
af9049da6e dnfile: return NO_ADDRESS for base_address 2022-06-14 17:43:04 -06:00
William Ballenthin
6b5e125592 extractors: mypy 2022-06-14 17:42:04 -06:00
William Ballenthin
ee5c86913d extractor: clarify base address handling 2022-06-14 17:40:04 -06:00
Willi Ballenthin
0ff3bf1e5e Update .github/workflows/tests.yml 2022-06-14 17:07:25 -06:00
Willi Ballenthin
f5b79c0285 Update .github/workflows/tests.yml 2022-06-14 17:06:48 -06:00
William Ballenthin
c417b5dd79 merge master 2022-06-14 17:05:46 -06:00
William Ballenthin
bb74c73f6f sync rules 2022-06-14 17:02:34 -06:00
Willi Ballenthin
df101e5a60 Update capa/features/extractors/dnfile/extractor.py 
Co-authored-by: Mike Hunhoff <mike.hunhoff@gmail.com>
 2022-06-14 17:01:20 -06:00
William Ballenthin
aff6191b11 ida: meta: provide [] as argv 2022-06-14 16:59:58 -06:00
William Ballenthin
269f056e52 ida: use new ResultDocument structures 2022-06-14 16:58:32 -06:00
William Ballenthin
9c77488937 ida: meta: extract os/format/platform 2022-06-14 16:57:19 -06:00
Moritz
2ceed78924 Merge pull request #1050 from mandiant/dependabot/pip/mypy-0.961 
build(deps-dev): bump mypy from 0.960 to 0.961
 2022-06-13 19:24:37 +02:00
Moritz
df99b1d394 Merge pull request #1049 from mandiant/dependabot/pip/requests-2.28.0 
build(deps-dev): bump requests from 2.27.1 to 2.28.0
 2022-06-13 19:24:29 +02:00
dependabot[bot]
57633ceeb2 build(deps-dev): bump mypy from 0.960 to 0.961 
Bumps [mypy](https://github.com/python/mypy) from 0.960 to 0.961.
- [Release notes](https://github.com/python/mypy/releases)
- [Commits](https://github.com/python/mypy/compare/v0.960...v0.961)

---
updated-dependencies:
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-13 14:16:18 +00:00
dependabot[bot]
7aa041c4d1 build(deps-dev): bump requests from 2.27.1 to 2.28.0 
Bumps [requests](https://github.com/psf/requests) from 2.27.1 to 2.28.0.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.27.1...v2.28.0)

---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-13 14:16:11 +00:00
Willi Ballenthin
8031be75ab render: fix computation of subrule matches 2022-06-10 15:06:22 -06:00
Willi Ballenthin
3103307601 tests: fix reference error 2022-06-10 14:58:26 -06:00
Willi Ballenthin
6568189839 freeze: fix sorting of addresses 2022-06-10 14:58:17 -06:00