gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-06-12 11:01:31 -07:00
Code Issues Packages Projects Releases Wiki Activity
6,224 Commits 53 Branches 49 Tags
master
Commit Graph

6224 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Capa Bot 430de81711 Sync capa rules submodule 2026-06-12 13:10:21 +00:00
Willi Ballenthin 2c12cbb485 tests: add data-driven test fixtures for rule matcher (#2987) 2026-06-11 13:42:29 +02:00
Willi Ballenthin 0fba3e58ee tests: split out ELF OS detection fixtures into their own JSON 2026-06-11 13:41:30 +02:00
Willi Ballenthin 028aa533b1 tests: add more ELF OS detection cases (#3099) 
* tests: add more ELF OS detection cases
 2026-06-11 10:42:10 +02:00
Capa Bot e69eb70d55 Sync capa-testfiles submodule 2026-06-11 08:19:25 +00:00
Willi Ballenthin 8a18bd0e54 tests: add more granular ELF OS detection tests, data-driven (#3098) 
to better support ports of this logic to other languages/runtimes
 2026-06-11 10:18:14 +02:00
Willi Ballenthin ccf3a87e83 tests: add snapshot tests for feature extraction (#3069) 
Introduces data-driven snapshot tests that regenerate capa freeze files
for a curated set of samples in the tests/data submodule and compare the
bytes against committed fixtures under tests/fixtures/freezes/. Any
change that perturbs feature extraction surfaces as a test failure with
a feature-count delta and a truncated unified diff.
 2026-06-09 23:28:49 +02:00
Capa Bot 58bfa7607e Sync capa-testfiles submodule 2026-06-09 21:27:35 +00:00
lakshit verma adffa80e8f ida: show addresses for file level features in rulegen (#3009) 
* ida: show addresses for file level features in rulegen

* ida(ai): remove redundant `int` conversion

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>

---------

Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2026-06-05 11:32:46 +02:00
dependabot[bot] c592100495 build(deps-dev): bump vitest from 3.0.9 to 4.1.0 in /web/explorer (#3092) 
Bumps [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) from 3.0.9 to 4.1.0.
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Changelog](https://github.com/vitest-dev/vitest/blob/main/docs/releases.md)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.0/packages/vitest)

---
updated-dependencies:
- dependency-name: vitest
  dependency-version: 4.1.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2026-06-05 10:39:38 +02:00
Ange Albertini 33701d67ae Merge pull request #3090 from corkamig/rva_deprecation 
RelativeVirtualAddress deprecation
 2026-06-03 08:45:52 +02:00
Ange Albertini 09f5bd5a5c Version number for deprecation 2026-06-02 09:26:13 +02:00
Ange Albertini cfff133ae0 Formatting 2026-06-01 15:38:21 +00:00
Ange Albertini 687e07320e Issue link 2026-06-01 17:31:40 +02:00
Ange Albertini a14b463541 More information for RVA deprecation 2026-06-01 17:24:39 +02:00
Ange Albertini 5917948849 Merge branch 'master' into rva_deprecation 2026-05-28 19:46:15 +02:00
dependabot[bot] a07b597ee1 build(deps): bump protobuf from 7.34.0 to 7.35.0 (#3089) 
Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 7.34.0 to 7.35.0.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Commits](https://github.com/protocolbuffers/protobuf/commits)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-version: 7.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-28 10:19:46 -06:00
dependabot[bot] 987338d0c9 build(deps): bump ida-settings from 3.2.2 to 3.4.1 (#3088) 
Bumps ida-settings from 3.2.2 to 3.4.1.

---
updated-dependencies:
- dependency-name: ida-settings
  dependency-version: 3.4.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-28 08:55:14 -06:00
Ange Albertini 7962d97b9a Better test 2026-05-28 14:00:41 +00:00
Ange Albertini c134af2304 Formatting fix 2026-05-28 13:34:48 +00:00
Ange Albertini 7f458f1844 updated Changelog (RVA deprecation) 2026-05-28 13:23:28 +00:00
Ange Albertini 61c24ebcbb RelativeVirtualAddress deprecation warning 2026-05-28 13:09:53 +00:00
Moritz 3eada453e5 Merge pull request #3065 from mandiant/dependabot/npm_and_yarn/web/explorer/postcss-8.5.12 
build(deps): bump postcss from 8.5.3 to 8.5.12 in /web/explorer
 2026-05-26 12:01:16 +02:00
Capa Bot 88ba8f77ae Sync capa rules submodule 2026-05-22 14:14:51 +00:00
Capa Bot c619ef51f6 Sync capa rules submodule 2026-05-22 11:42:31 +00:00
Moritz 9ac688b8c3 build(deps-dev): bump js-cookie from 3.0.5 to 3.0.7 in /web/explorer (#3086) 
Bumps [js-cookie](https://github.com/js-cookie/js-cookie) from 3.0.5 to 3.0.7.
- [Release notes](https://github.com/js-cookie/js-cookie/releases)
- [Commits](https://github.com/js-cookie/js-cookie/compare/v3.0.5...v3.0.7)

---
updated-dependencies:
- dependency-name: js-cookie
  dependency-version: 3.0.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-22 09:36:06 +02:00
dependabot[bot] d17bc6e14c build(deps-dev): bump js-cookie from 3.0.5 to 3.0.7 in /web/explorer 
Bumps [js-cookie](https://github.com/js-cookie/js-cookie) from 3.0.5 to 3.0.7.
- [Release notes](https://github.com/js-cookie/js-cookie/releases)
- [Commits](https://github.com/js-cookie/js-cookie/compare/v3.0.5...v3.0.7)

---
updated-dependencies:
- dependency-name: js-cookie
  dependency-version: 3.0.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-05-21 21:24:12 +00:00
Capa Bot 7e00d2882e Sync capa rules submodule 2026-05-21 07:02:20 +00:00
Capa Bot 54da63ef2b Sync capa-testfiles submodule 2026-05-20 18:37:49 +00:00
Capa Bot 7fea0cebcb Sync capa-testfiles submodule 2026-05-20 10:08:27 +00:00
Capa Bot 0f1e0a28f5 Sync capa-testfiles submodule 2026-05-20 09:13:46 +00:00
Capa Bot c4e272ae75 Sync capa rules submodule 2026-05-20 09:08:30 +00:00
Capa Bot 49bf8315cd Sync capa-testfiles submodule 2026-05-20 08:23:02 +00:00
Capa Bot 8572bd63e9 Sync capa-testfiles submodule 2026-05-20 08:10:43 +00:00
Capa Bot d9014d055e Sync capa-testfiles submodule 2026-05-20 07:49:30 +00:00
Capa Bot 1fd598e259 Sync capa rules submodule 2026-05-20 07:09:28 +00:00
dependabot[bot] 2ed20e42ba build(deps): bump pyghidra from 3.0.0 to 3.1.0 (#3081) 
Bumps [pyghidra](https://github.com/NationalSecurityAgency/ghidra) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/NationalSecurityAgency/ghidra/releases)
- [Commits](https://github.com/NationalSecurityAgency/ghidra/commits)

---
updated-dependencies:
- dependency-name: pyghidra
  dependency-version: 3.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-19 09:53:19 -06:00
Mike Hunhoff a98fd8240e fix duplicate rule candidate evaluation in optimized matching engine (#3080) 
* fix duplicate rule candidate evaluation in optimized matching engine

* update CHANGELOG

* update comments
 2026-05-18 17:40:55 -06:00
Mike Hunhoff ced180ddbc perf: optimize all_zeros using fast bytes comparison (#3078) 
* perf: optimize all_zeros using fast bytes comparison
 2026-05-18 10:20:10 +02:00
Mike Hunhoff db0e1536ce incorrect bytes() constructor usage in buf_filled_with (#3077) 2026-05-16 13:14:24 +02:00
Mike Hunhoff bbe050437b remove redundant code related to cli loading (#3076) 
* remove unnecessary os_ argument from capa.loader.collect_metadata

* remove redundant limitation check in main.py

* update CHANGELOG

* Update CHANGELOG.md
 2026-05-15 15:20:46 -06:00
Capa Bot 7e06ba0ffe Sync capa rules submodule 2026-05-15 19:12:21 +00:00
Capa Bot d889085aad Sync capa rules submodule 2026-05-15 18:22:47 +00:00
Capa Bot cb5f56a02c Sync capa rules submodule 2026-05-15 14:06:20 +00:00
Capa Bot 5e8d8ac994 Sync capa rules submodule 2026-05-15 10:32:59 +00:00
dependabot[bot] 8acb79ab7b build(deps-dev): bump mypy from 1.20.0 to 2.1.0 (#3070) 
* build(deps-dev): bump mypy from 1.20.0 to 2.1.0

Bumps [mypy](https://github.com/python/mypy) from 1.20.0 to 2.1.0.
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](https://github.com/python/mypy/compare/v1.20.0...v2.1.0)

---
updated-dependencies:
- dependency-name: mypy
  dependency-version: 2.1.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix mypy lints

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Mike Hunhoff <mike.hunhoff@gmail.com>
 2026-05-13 15:05:51 -06:00
Capa Bot 4618822884 Sync capa-testfiles submodule 2026-05-13 17:50:02 +00:00
dependabot[bot] f9973d71be build(deps): bump markdown-it-py from 4.0.0 to 4.2.0 (#3071) 
Bumps [markdown-it-py](https://github.com/executablebooks/markdown-it-py) from 4.0.0 to 4.2.0.
- [Release notes](https://github.com/executablebooks/markdown-it-py/releases)
- [Changelog](https://github.com/executablebooks/markdown-it-py/blob/master/CHANGELOG.md)
- [Commits](https://github.com/executablebooks/markdown-it-py/compare/v4.0.0...v4.2.0)

---
updated-dependencies:
- dependency-name: markdown-it-py
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-13 11:28:45 -06:00
dependabot[bot] dba405912d build(deps-dev): bump pytest from 9.0.2 to 9.0.3 (#3064) 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 9.0.2 to 9.0.3.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest/compare/9.0.2...9.0.3)

---
updated-dependencies:
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Mike Hunhoff <mike.hunhoff@gmail.com>
 2026-05-13 11:26:51 -06:00
dependabot[bot] 237a9bd995 build(deps-dev): bump build from 1.4.0 to 1.5.0 (#3067) 
Bumps [build](https://github.com/pypa/build) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/pypa/build/releases)
- [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pypa/build/compare/1.4.0...1.5.0)

---
updated-dependencies:
- dependency-name: build
  dependency-version: 1.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-11 14:04:25 -06:00