From f0fb5fb346bc0bd812fef3a401672f1c1a0daf4f Mon Sep 17 00:00:00 2001 From: Capa Bot Date: Wed, 26 May 2021 21:03:50 +0000 Subject: [PATCH] Sync capa rules submodule --- CHANGELOG.md | 6 +++++- README.md | 2 +- rules | 2 +- 3 files changed, 7 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index dd182d75..b93d6307 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -13,7 +13,7 @@ It includes many new rules, including all new techniques introduced in MITRE ATT - main: auto detect shellcode based on file extension #516 @mr-tz - main: more detailed progress bar output when matching functions #562 @mr-tz -### New Rules (73) +### New Rules (77) - anti-analysis/packer/amber/packed-with-amber @gormaniac - collection/file-managers/gather-3d-ftp-information @re-fox @@ -87,6 +87,10 @@ It includes many new rules, including all new techniques introduced in MITRE ATT - executable/installer/inno-setup/packaged-as-an-inno-setup-installer awillia2@cisco.com - data-manipulation/hashing/djb2/hash-data-using-djb2 awillia2@cisco.com - data-manipulation/encoding/base64/decode-data-using-base64-via-dword-translation-table gilbert.elliot@fireeye.com +- nursery/list-tcp-connections-and-listeners michael.hunhoff@fireeye.com +- nursery/list-udp-connections-and-listeners michael.hunhoff@fireeye.com +- nursery/log-keystrokes-via-raw-input-data michael.hunhoff@fireeye.com +- nursery/register-http-server-url michael.hunhoff@fireeye.com - ### Bug Fixes diff --git a/README.md b/README.md index 72ff9a64..e09d6838 100644 --- a/README.md +++ b/README.md @@ -2,7 +2,7 @@ [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/flare-capa)](https://pypi.org/project/flare-capa) [![Last release](https://img.shields.io/github/v/release/fireeye/capa)](https://github.com/fireeye/capa/releases) -[![Number of rules](https://img.shields.io/badge/rules-559-blue.svg)](https://github.com/fireeye/capa-rules) +[![Number of rules](https://img.shields.io/badge/rules-563-blue.svg)](https://github.com/fireeye/capa-rules) [![CI status](https://github.com/fireeye/capa/workflows/CI/badge.svg)](https://github.com/fireeye/capa/actions?query=workflow%3ACI+event%3Apush+branch%3Amaster) [![Downloads](https://img.shields.io/github/downloads/fireeye/capa/total)](https://github.com/fireeye/capa/releases) [![License](https://img.shields.io/badge/license-Apache--2.0-green.svg)](LICENSE.txt) diff --git a/rules b/rules index 1597620c..0979894d 160000 --- a/rules +++ b/rules @@ -1 +1 @@ -Subproject commit 1597620c5916e7b4a6dfa121f024292efefdf54e +Subproject commit 0979894dd9c353e307fa64678496271647261755