gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-22 07:10:29 -08:00
Code Issues Packages Projects Releases Wiki Activity

main: load gzip compressed .pat files

Browse Source
This commit is contained in:
William Ballenthin
2021-03-04 18:04:46 -07:00
parent 20894124e6
commit 004ddb3e66
4 changed files with 16 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
tests/fixtures.py
View File

@@ -74,13 +74,14 @@ def get_viv_extractor(path):
import capa.features.extractors.viv
aulldiv_pat = os.path.join(CD, "..", "sigs", "test_aulldiv.pat")
aullrem_pat = os.path.join(CD, "..", "sigs", "test_aullrem.pat.gz")
if "raw32" in path:
vw = capa.main.get_workspace(path, "sc32", sigpaths=[aulldiv_pat])
vw = capa.main.get_workspace(path, "sc32", sigpaths=[aulldiv_pat, aullrem_pat])
elif "raw64" in path:
vw = capa.main.get_workspace(path, "sc64", sigpaths=[aulldiv_pat])
vw = capa.main.get_workspace(path, "sc64", sigpaths=[aulldiv_pat, aullrem_pat])
else:
vw = capa.main.get_workspace(path, "auto", sigpaths=[aulldiv_pat])
vw = capa.main.get_workspace(path, "auto", sigpaths=[aulldiv_pat, aullrem_pat])
extractor = capa.features.extractors.viv.VivisectFeatureExtractor(vw, path)
fixup_viv(path, extractor)
return extractor