gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-01-15 14:23:38 -08:00
Code Issues Packages Projects Releases Wiki Activity
152 Commits 41 Branches 48 Tags
de370e2bd0a2d00fae478f57e9404d3c04d7b43e
Commit Graph

152 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Willi Ballenthin
de370e2bd0 Merge pull request #59 from fireeye/fix-bytes-display-vverbose 
fix bug when rendering bytes feature in vverbose
 2020-07-01 09:31:34 -06:00
Michael Hunhoff
ccdbd43cda fix bug in bytes feture rendering 2020-07-01 08:47:43 -06:00
Moritz Raabe
4d1449e3fa sync rules 2020-07-01 09:53:57 +02:00
Moritz Raabe
7c542c3da9 Merge branch 'linter-lib-checks' 2020-07-01 09:31:53 +02:00
Moritz Raabe
e602ae9d0f sync rules 2020-07-01 09:31:01 +02:00
Moritz Raabe
cd77aa23db Merge branch 'master' into linter-lib-checks 2020-07-01 09:27:56 +02:00
Willi Ballenthin
cb7b2c9618 readme: typo 2020-06-30 22:27:40 -06:00
William Ballenthin
3f4489849a Merge branch 'master' of github.com:fireeye/capa 2020-06-29 12:28:30 -06:00
Willi Ballenthin
d97e4fb1d8 Merge pull request #54 from fireeye/py3-changes-for-capa-json 
Python 3 serialization changes
 2020-06-30 22:07:34 -06:00
Michael Hunhoff
52f7fb561f changes to support py3 2020-06-30 16:45:08 -06:00
Willi Ballenthin
7d644fd86b Merge pull request #38 from fireeye/ana-fix-keyerror 
Fix KeyError when deleting nonexistent keys
 2020-06-30 15:21:12 -06:00
Willi Ballenthin
59beee6b4a Merge pull request #44 from fireeye/doclint/unsigned 
Doclint/unsigned
 2020-06-30 15:19:45 -06:00
Moritz Raabe
5cee0d9b80 add lint negative numbers and cleanup tests 2020-06-30 22:17:42 +02:00
Moritz Raabe
afe5dba92a document signed vs unsigned 2020-06-30 22:11:57 +02:00
Ana María Martínez Gómez
8e78d8de53 Fix KeyError when deleting nonexistent keys 
`hidden_meta` saves not only the existing hidden meta keys, but also
those who don't exist with value `None`. For example:
```
{'capa/path': None, 'capa/nursery': None}
```

Deleting nonexistent keys raises a `KeyError` exception.
 2020-06-30 14:24:06 +02:00
Willi Ballenthin
5cbfbc4997 Merge pull request #34 from fireeye/rule-organization 
update output rendering
 2020-06-29 13:07:51 -06:00
William Ballenthin
51fec3959c render: fix exception when lib rule has no namespace 2020-06-29 12:28:18 -06:00
William Ballenthin
fbbc8a573f main: remove old render code 2020-06-29 12:28:01 -06:00
William Ballenthin
b1374f2dd0 submodule: rules: update 2020-06-29 12:26:31 -06:00
William Ballenthin
c5a718d5ba main: emit json even if there are file limitations 
closes #53
 2020-06-29 12:06:31 -06:00
William Ballenthin
325aa9574f linter: check that lib rules don't have a namespace 
closes #35
 2020-06-29 06:16:19 -06:00
William Ballenthin
6e08cabea1 submodule: rules: update 2020-06-29 06:15:47 -06:00
William Ballenthin
7a5d2d025f linter: check that lib rules are in lib directory 
closes #36
 2020-06-29 06:09:18 -06:00
William Ballenthin
9d297e6699 linter: ignore testbed files 2020-06-29 06:09:02 -06:00
William Ballenthin
0a5947290b main: add --version flag 
closes ghe#402
 2020-06-28 13:10:17 -06:00
William Ballenthin
39a49fb4b9 submodule: rules: bump to master 2020-06-28 13:01:56 -06:00
William Ballenthin
96158c6ca5 main: update detection for unsupported files via namespace matches 2020-06-28 12:58:34 -06:00
William Ballenthin
3b8f686243 readme: update example and describe namespace, removing rule-category 2020-06-28 12:52:45 -06:00
William Ballenthin
ed12c4758b render: group ATT&CK tags in a single table 2020-06-28 12:23:07 -06:00
William Ballenthin
a12bcf238b pep8 2020-06-28 12:13:31 -06:00
William Ballenthin
112ddb43c9 render: hint min width of tables 2020-06-28 12:13:17 -06:00
William Ballenthin
c9ab5f9dda render: fix handling of file-scope rules 2020-06-28 12:05:15 -06:00
William Ballenthin
7c51fd4890 render: fix rendering of file scope results 2020-06-28 12:04:53 -06:00
William Ballenthin
f77e1f4946 render: include rule source in the json 2020-06-28 11:55:33 -06:00
William Ballenthin
c34578b80c render: hint number of matches in verbose and vverbose mode 2020-06-28 11:52:03 -06:00
William Ballenthin
ef4be10543 render: show logic under not nodes 2020-06-28 11:48:23 -06:00
William Ballenthin
5f598e8a08 render: learn to render Range/Count statements 2020-06-28 11:30:23 -06:00
William Ballenthin
cb8fedc1b9 engine: Range should never return children results 2020-06-28 11:29:36 -06:00
William Ballenthin
a355f2f0c6 render: hint the number of matches 2020-06-28 10:33:28 -06:00
William Ballenthin
c55ce3c1f0 render: hint number of hidden locations 2020-06-28 09:55:08 -06:00
William Ballenthin
1d00f188f1 render: format numbers and offsets as hex 2020-06-28 09:53:14 -06:00
William Ballenthin
d04c9db399 render: ellipsis formatting 2020-06-28 09:39:52 -06:00
William Ballenthin
617b55ae3c render: only show 4 locations before using an ellipsis 2020-06-28 09:37:48 -06:00
William Ballenthin
71177c9d77 pep8 2020-06-28 09:32:16 -06:00
William Ballenthin
4c4b538a6a render: emit bytes uppercase, separated 2020-06-28 09:31:15 -06:00
William Ballenthin
9be448a900 render: dont display implied True for characteristic 2020-06-28 09:20:34 -06:00
William Ballenthin
bdc635a0f9 render: capture and display matched regex string 2020-06-28 09:20:25 -06:00
William Ballenthin
50dc945103 render: dont forget about bytes feature 2020-06-28 08:54:46 -06:00
William Ballenthin
cad438a9bd render: remove dead code 2020-06-28 08:53:41 -06:00
William Ballenthin
e3245385c1 linter: use posixpath to normalize slashes 2020-06-28 08:52:30 -06:00