From 51ad526cfc98d573559706e22bb80c005204f2b0 Mon Sep 17 00:00:00 2001
From: doomedraven <doomedraven@users.noreply.github.com>
Date: Tue, 1 Dec 2020 11:20:49 +0100
Subject: [PATCH] Simple example how to use capa as library

Just quick example how to use capa as library, to save time to someone, reading code and scripts
---
 scripts/capa_as_library.py | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 scripts/capa_as_library.py

diff --git a/scripts/capa_as_library.py b/scripts/capa_as_library.py
new file mode 100644
index 00000000..8f7b564c
--- /dev/null
+++ b/scripts/capa_as_library.py
@@ -0,0 +1,22 @@
+#!/usr/bin/env python3
+
+import json
+import capa.main
+import capa.rules
+import capa.engine
+import capa.features
+from capa.engine import *
+
+sample_path = "path/to/file"
+
+capa.main.RULES_PATH_DEFAULT_STRING = "/tmp/capa/rules/"
+rules = capa.main.get_rules(capa.main.RULES_PATH_DEFAULT_STRING, disable_progress=True)
+rules = capa.rules.RuleSet(rules)
+
+extractor = capa.main.get_extractor(sample_path, "auto", disable_progress=True)
+meta = capa.main.collect_metadata("", sample_path,capa.main.RULES_PATH_DEFAULT_STRING, "auto", extractor)
+capabilities, counts = capa.main.find_capabilities(rules, extractor, disable_progress=True)
+meta["analysis"].update(counts)
+
+capa_json = json.loads(capa.render.render_json(meta, rules, capabilities))
+capa_texttable = capa.render.render_default(meta, rules, capabilities)