From efc26be196c8bd6e1f717e2ad2573ba2af6ff93b Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Thu, 11 Jan 2024 14:20:33 +0000 Subject: [PATCH] Sync capa rules submodule --- CHANGELOG.md | 5 ++++- README.md | 2 +- rules | 2 +- 3 files changed, 6 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index a9cd1505..20ba49d7 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -23,7 +23,7 @@ - update freeze format to v3, adding support for dynamic analysis @williballenthin - extractor: ignore DLL name for api features #1815 @mr-tz -### New Rules (36) +### New Rules (39) - nursery/get-ntoskrnl-base-address @mr-tz - host-interaction/network/connectivity/set-tcp-connection-state @johnk3r @@ -60,6 +60,9 @@ - lib/create-file-decompression-interface-context-on-windows jakub.jozwiak@mandiant.com - nursery/enumerate-files-in-dotnet moritz.raabe@mandiant.com anushka.virgaonkar@mandiant.com - nursery/get-mac-address-in-dotnet moritz.raabe@mandiant.com michael.hunhoff@mandiant.com echernofsky@google.com +- nursery/get-current-process-command-line william.ballenthin@mandiant.com +- nursery/get-current-process-file-path william.ballenthin@mandiant.com +- nursery/hook-routines-via-dlsym-rtld_next william.ballenthin@mandiant.com - ### Bug Fixes diff --git a/README.md b/README.md index 95818baa..4a4408cd 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/flare-capa)](https://pypi.org/project/flare-capa) [![Last release](https://img.shields.io/github/v/release/mandiant/capa)](https://github.com/mandiant/capa/releases) -[![Number of rules](https://img.shields.io/badge/rules-861-blue.svg)](https://github.com/mandiant/capa-rules) +[![Number of rules](https://img.shields.io/badge/rules-864-blue.svg)](https://github.com/mandiant/capa-rules) [![CI status](https://github.com/mandiant/capa/workflows/CI/badge.svg)](https://github.com/mandiant/capa/actions?query=workflow%3ACI+event%3Apush+branch%3Amaster) [![Downloads](https://img.shields.io/github/downloads/mandiant/capa/total)](https://github.com/mandiant/capa/releases) [![License](https://img.shields.io/badge/license-Apache--2.0-green.svg)](LICENSE.txt) diff --git a/rules b/rules index b65339be..c2f0c7bb 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit b65339be529eb0fb7dc0cd428f0240e72bfd358a +Subproject commit c2f0c7bb68e1c3273a46fbb31f116b98a6e604b0