From fbb348bc823da695c218a9136ffae14ecd4f3bf0 Mon Sep 17 00:00:00 2001 From: AG <98327736+ggold7046@users.noreply.github.com> Date: Fri, 24 Mar 2023 20:50:45 +0530 Subject: [PATCH 1/8] Update utils.py Changed the colour/highlight to "cyan" instead of "blue" for easy noticing. --- capa/render/utils.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/capa/render/utils.py b/capa/render/utils.py index c65b705b..20a817d7 100644 --- a/capa/render/utils.py +++ b/capa/render/utils.py @@ -16,7 +16,7 @@ import capa.render.result_document as rd def bold(s: str) -> str: """draw attention to the given string""" - return termcolor.colored(s, "blue") + return termcolor.colored(s, "cyan") def bold2(s: str) -> str: From d61c85c171863966495ad10de89400434ec7bc0e Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Sun, 26 Mar 2023 09:29:01 +0000 Subject: [PATCH 2/8] Sync capa rules submodule --- rules | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/rules b/rules index 232af1ca..4ca80233 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit 232af1ca4cd8ad61c6d878dd2b893c830fdb4c8c +Subproject commit 4ca802336320e9b2f1f524d5aa95ef102ad3c1e4 From 2bedc6b181383d5933676b5964dbb9379989ffee Mon Sep 17 00:00:00 2001 From: Willi Ballenthin Date: Mon, 27 Mar 2023 11:47:53 +0200 Subject: [PATCH 3/8] ci: tests: run binja after code style/linter --- .github/workflows/tests.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 2cb190b3..e9701c9e 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -94,6 +94,7 @@ jobs: binja-tests: name: Binary Ninja tests for ${{ matrix.python-version }} on ${{ matrix.os }} runs-on: ubuntu-20.04 + needs: [code_style, rule_linter] strategy: fail-fast: false matrix: From ea2acea668f1325c1b510f031fd933943af8eddb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 27 Mar 2023 14:08:45 +0000 Subject: [PATCH 4/8] build(deps-dev): bump types-protobuf from 4.21.0.5 to 4.22.0.0 Bumps [types-protobuf](https://github.com/python/typeshed) from 4.21.0.5 to 4.22.0.0. - [Release notes](https://github.com/python/typeshed/releases) - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-protobuf dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- setup.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/setup.py b/setup.py index 642b0e4d..b8b32e1f 100644 --- a/setup.py +++ b/setup.py @@ -89,7 +89,7 @@ setuptools.setup( "types-termcolor==1.1.4", "types-psutil==5.8.23", "types_requests==2.28.1", - "types-protobuf==4.21.0.5", + "types-protobuf==4.22.0.0", ], "build": [ "pyinstaller==5.9.0", From d873cc025727d4cec96cfdf91c6e51f70e79a038 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 27 Mar 2023 14:09:09 +0000 Subject: [PATCH 5/8] build(deps): bump pydantic from 1.10.6 to 1.10.7 Bumps [pydantic](https://github.com/pydantic/pydantic) from 1.10.6 to 1.10.7. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v1.10.7/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v1.10.6...v1.10.7) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- setup.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/setup.py b/setup.py index 642b0e4d..c9f7a3a5 100644 --- a/setup.py +++ b/setup.py @@ -27,7 +27,7 @@ requirements = [ "pyelftools==0.29", "dnfile==0.13.0", "dncil==1.0.2", - "pydantic==1.10.6", + "pydantic==1.10.7", "protobuf==4.21.12", ] From cd2ef15a8a37dbec1459ab4c9621186016a74027 Mon Sep 17 00:00:00 2001 From: AG <98327736+ggold7046@users.noreply.github.com> Date: Tue, 28 Mar 2023 01:11:23 +0530 Subject: [PATCH 6/8] Update CHANGELOG.md Update changelog to reflect changes introduced in pull request #1399 --- CHANGELOG.md | 1 + 1 file changed, 1 insertion(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 9a92a5a9..2d4a887d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -7,6 +7,7 @@ - extractor: add Binary Ninja feature extractor @xusheng6 - new cli flag `--os` to override auto-detected operating system for a sample @captainGeech42 +- Change colour/highlight to "cyan" instead of "blue" for easy noticing.#1384 @ggold7046 ### Breaking Changes From af1500825af9454e716b05548360d45393c87295 Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Tue, 28 Mar 2023 07:20:10 +0000 Subject: [PATCH 7/8] Sync capa rules submodule --- CHANGELOG.md | 3 ++- README.md | 2 +- rules | 2 +- 3 files changed, 4 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 9a92a5a9..692055b2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -10,7 +10,7 @@ ### Breaking Changes -### New Rules (22) +### New Rules (23) - persistence/scheduled-tasks/schedule-task-via-at joren485 - data-manipulation/prng/generate-random-numbers-via-rtlgenrandom william.ballenthin@mandiant.com @@ -34,6 +34,7 @@ - nursery/set-web-proxy-in-dotnet michael.hunhoff@mandiant.com - nursery/check-for-windows-sandbox-via-subdirectory echernofsky@google.com - nursery/enumerate-pe-sections-in-dotnet @mr-tz +- nursery/destroy-software-breakpoint-capability echernofsky@google.com - ### Bug Fixes diff --git a/README.md b/README.md index 996467b2..91945fa4 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/flare-capa)](https://pypi.org/project/flare-capa) [![Last release](https://img.shields.io/github/v/release/mandiant/capa)](https://github.com/mandiant/capa/releases) -[![Number of rules](https://img.shields.io/badge/rules-789-blue.svg)](https://github.com/mandiant/capa-rules) +[![Number of rules](https://img.shields.io/badge/rules-791-blue.svg)](https://github.com/mandiant/capa-rules) [![CI status](https://github.com/mandiant/capa/workflows/CI/badge.svg)](https://github.com/mandiant/capa/actions?query=workflow%3ACI+event%3Apush+branch%3Amaster) [![Downloads](https://img.shields.io/github/downloads/mandiant/capa/total)](https://github.com/mandiant/capa/releases) [![License](https://img.shields.io/badge/license-Apache--2.0-green.svg)](LICENSE.txt) diff --git a/rules b/rules index 4ca80233..48692d18 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit 4ca802336320e9b2f1f524d5aa95ef102ad3c1e4 +Subproject commit 48692d18cc3fc6c96a608abe9fd9d8b010c63f83 From b5f274bf56a29c8af86ad72d844c021f081370de Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Tue, 28 Mar 2023 14:07:51 +0000 Subject: [PATCH 8/8] Sync capa rules submodule --- CHANGELOG.md | 3 ++- README.md | 2 +- rules | 2 +- 3 files changed, 4 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 81fe2abe..b17b00c5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -11,7 +11,7 @@ ### Breaking Changes -### New Rules (23) +### New Rules (24) - persistence/scheduled-tasks/schedule-task-via-at joren485 - data-manipulation/prng/generate-random-numbers-via-rtlgenrandom william.ballenthin@mandiant.com @@ -36,6 +36,7 @@ - nursery/check-for-windows-sandbox-via-subdirectory echernofsky@google.com - nursery/enumerate-pe-sections-in-dotnet @mr-tz - nursery/destroy-software-breakpoint-capability echernofsky@google.com +- nursery/send-data-to-internet michael.hunhoff@mandiant.com - ### Bug Fixes diff --git a/README.md b/README.md index 91945fa4..2a40aaf1 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/flare-capa)](https://pypi.org/project/flare-capa) [![Last release](https://img.shields.io/github/v/release/mandiant/capa)](https://github.com/mandiant/capa/releases) -[![Number of rules](https://img.shields.io/badge/rules-791-blue.svg)](https://github.com/mandiant/capa-rules) +[![Number of rules](https://img.shields.io/badge/rules-792-blue.svg)](https://github.com/mandiant/capa-rules) [![CI status](https://github.com/mandiant/capa/workflows/CI/badge.svg)](https://github.com/mandiant/capa/actions?query=workflow%3ACI+event%3Apush+branch%3Amaster) [![Downloads](https://img.shields.io/github/downloads/mandiant/capa/total)](https://github.com/mandiant/capa/releases) [![License](https://img.shields.io/badge/license-Apache--2.0-green.svg)](LICENSE.txt) diff --git a/rules b/rules index 48692d18..d0e54bb0 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit 48692d18cc3fc6c96a608abe9fd9d8b010c63f83 +Subproject commit d0e54bb05d8549cd3979ff1b21a22ee33c533ad6