gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-21 14:50:33 -08:00
Code Issues Packages Projects Releases Wiki Activity

linter: skip native API check for NtProtectVirtualMemory

Browse Source 
closes #1675
This commit is contained in:
Willi Ballenthin
2023-08-02 12:36:42 +00:00
parent 727ece499a
commit 04fbcbbbd3
2 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGELOG.md
View File

@@ -16,7 +16,8 @@
### Bug Fixes ### Bug Fixes
- Fix binja backend stack string detection. [#1473](https://github.com/mandiant/capa/issues/1473) [@xusheng6](https://github.com/xusheng6) - Fix binja backend stack string detection. #1473 @xusheng6
- linter: skip native API check for NtProtectVirtualMemory #1675 @williballenthin
### capa explorer IDA Pro plugin ### capa explorer IDA Pro plugin

1
scripts/lint.py
View File

@@ -569,6 +569,7 @@ class FeatureNtdllNtoskrnlApi(Lint):
"ZwCreateProcess", "ZwCreateProcess",
"ZwCreateUserProcess", "ZwCreateUserProcess",
"RtlCreateUserProcess", "RtlCreateUserProcess",
"NtProtectVirtualMemory",
): ):
# ntoskrnl.exe does not export these routines # ntoskrnl.exe does not export these routines
continue continue