gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-23 07:28:34 -08:00
Code Issues Packages Projects Releases Wiki Activity

add call address to show-features.py script

Browse Source
This commit is contained in:
Yacine Elhamer
2023-08-02 23:10:27 +01:00
parent 4e1527df95
commit 3c3205adf1
1 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
scripts/show-features.py
View File

@@ -257,7 +257,7 @@ def print_dynamic_features(processes, extractor: DynamicFeatureExtractor):
print(f" proc: {p.inner['name']}: {feature}") print(f" proc: {p.inner['name']}: {feature}")
for t in extractor.get_threads(p): for t in extractor.get_threads(p):
print(f" {t.address}") print(f" thread: {t.address.tid}")
for feature, addr in extractor.extract_thread_features(p, t): for feature, addr in extractor.extract_thread_features(p, t):
if is_global_feature(feature): if is_global_feature(feature):
continue continue
@@ -273,7 +273,8 @@ def print_dynamic_features(processes, extractor: DynamicFeatureExtractor):
continue continue
if isinstance(feature, API): if isinstance(feature, API):
apis.append(str(feature.value)) assert isinstance(addr, capa.features.address.DynamicReturnAddress)
apis.append((addr.call.id, str(feature.value)))
if isinstance(feature, (Number, String)): if isinstance(feature, (Number, String)):
arguments.append(str(feature.value)) arguments.append(str(feature.value))
@@ -281,8 +282,8 @@ def print_dynamic_features(processes, extractor: DynamicFeatureExtractor):
if not apis: if not apis:
print(f" arguments=[{', '.join(arguments)}]") print(f" arguments=[{', '.join(arguments)}]")
for api in apis: for cid, api in apis:
print(f"{api}({', '.join(arguments)})") print(f"call {cid}: {api}({', '.join(arguments)})")
def ida_main(): def ida_main():