gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-27 13:13:09 -08:00
Code Issues Packages Projects Releases Wiki Activity
1,807 Commits 45 Branches 48 Tags
06f8943bc41952fa4f874ced33830ea33894e672
Commit Graph

276 Commits

Author SHA1 Message Date
William Ballenthin
06f8943bc4 features: add format/pe and format/elf characteristics 2021-08-11 09:10:04 -06:00
William Ballenthin
a1eca58d7a features: support characteristic(os/*) features 2021-08-11 08:40:40 -06:00
Capa Bot
811f484d3b Sync capa-testfiles submodule 2021-08-11 14:18:28 +00:00
Capa Bot
ef003366da Sync capa-testfiles submodule 2021-07-21 07:12:59 +00:00
Moritz Raabe
6fc2037f45 update sig file names 2021-06-30 08:54:37 +02:00
Moritz Raabe
6860b9a040 address Willi's feedback 2021-06-29 21:16:31 +02:00
Moritz Raabe
5c8a4aafd7 test scripts and fix show-features 2021-06-29 21:16:31 +02:00
William Ballenthin
09ad0ec184 tests: save .viv by default, hopefully improve test performance 2021-06-15 12:24:29 -06:00
William Ballenthin
9484fadd0f submodule sync data 2021-06-15 09:08:14 -06:00
Willi Ballenthin
b47b398b07 Merge pull request #636 from fireeye/fix-629 
move test sigs into testfiles
 2021-06-14 13:56:21 -06:00
William Ballenthin
c1acf702b6 fixtures: move test sigs to testfiles 2021-06-14 11:37:39 -06:00
William Ballenthin
ee41d47e4d test_function_id: fix test imports 2021-06-09 22:35:26 -06:00
William Ballenthin
527e993bb4 engine: remove dependency on rules, fixing circular import 2021-06-09 22:30:43 -06:00
William Ballenthin
954ed3a408 pep8 2021-06-09 22:22:03 -06:00
William Ballenthin
ac59e50b5f move capa/features/__init__.py logic to common.py 
also cleanup imports across the board,
thanks to pylance.
 2021-06-09 22:20:53 -06:00
William Ballenthin
7029ad32c4 move capa/features/extractors/__init__.py logic to base_extractor.py 2021-06-09 21:09:29 -06:00
William Ballenthin
fc9ad6c737 move extractors/ida/__init__.py logic to extractor.py 2021-06-09 17:55:44 -06:00
William Ballenthin
7d2e664320 move extractors/smda/__init__.py logic to extractor.py 2021-06-09 17:52:06 -06:00
William Ballenthin
6187317a4e move extractors/viv/__init__.py logic to extractor.py 2021-06-09 17:49:50 -06:00
Capa Bot
40b6575db6 Sync capa-testfiles submodule 2021-06-08 12:48:33 +00:00
Moritz Raabe
8b58723f40 bump smda and remove xfail 2021-06-07 13:56:55 +02:00
Capa Bot
6f51324cca Sync capa-testfiles submodule 2021-06-07 07:45:31 +00:00
Capa Bot
438677b129 Sync capa-testfiles submodule 2021-06-07 06:48:11 +00:00
Moritz Raabe
94089ff43f parse att&ck for output doc 2021-06-02 10:37:19 +02:00
Moritz Raabe
e6f45b63d6 fix test xfail 2021-05-31 10:02:31 +02:00
Willi Ballenthin
ed02088c82 detect (and short circuit) file limitations at file scope (#586) 
* smda: move pe carve into helpers

* smda: simplify test parametrization/xfail

* extractors: add pefile extractor for file scope features

* pep8

* main: bail early on file limitation detected at file scope

closes #583

* changelog
 2021-05-28 08:14:44 -06:00
Willi Ballenthin
bd63ded1dd file scope API features (#568) 
* smda: minor unrelated fixes

* file features: extract API features at file scope for library functions

closes #567

* changelog

* ida: add file-scope API feature

Co-authored-by: mike-hunhoff <mike.hunhoff@gmail.com>

* fix lints from pylance

* features: use "function-name" for recognized linked functions

* pep8

* pep8

* rules: remove incorrect feature scope

* tests: xfail SMDA tests relying on function id

* tests: fixtures: order tests by sample, ideally improving memory usage

* pep8

* pep8

* smda: xfail two more tests

Co-authored-by: mike-hunhoff <mike.hunhoff@gmail.com>
 2021-05-27 12:59:00 -06:00
Capa Bot
7df29b491c Sync capa-testfiles submodule 2021-05-27 07:08:00 +00:00
Capa Bot
2b19257c5c Sync capa-testfiles submodule 2021-05-26 07:22:40 +00:00
Moritz Raabe
8e4e9fc616 Revert "Sync capa-testfiles submodule" 
This reverts commit 826d472c07.
 2021-05-25 14:58:01 +02:00
Capa Bot
826d472c07 Sync capa-testfiles submodule 2021-05-25 12:45:59 +00:00
Capa Bot
57f416d62d Sync capa-testfiles submodule 2021-05-25 12:44:13 +00:00
Moritz Raabe
8a386b6909 improve progress bar output 2021-05-20 13:56:29 +02:00
Capa Bot
f9cec64c2d Sync capa-testfiles submodule 2021-05-20 08:11:28 +00:00
William Ballenthin
ec5cec619d rules: add tests demonstrating mnemonic descriptions 2021-05-18 13:35:24 -06:00
Moritz
424a25cb91 Fix tests on Windows - reduced memory impact and general fixes (#545) 
* Update tests.yml

* Update .github/workflows/tests.yml

* Update tests.yml

* update

* min tests

* enable all, no sigpaths

* update cache

* save workspace, log caching

* updated tests

* update tests

* update rec call test

* lower cache size

* address Ana's feedback
 2021-05-11 16:29:01 +02:00
Capa Bot
99a7380faf Sync capa-testfiles submodule 2021-05-07 12:49:58 +00:00
Capa Bot
4901cd1da1 Sync capa-testfiles submodule 2021-05-04 07:26:14 +00:00
William Ballenthin
8f0ce11ff6 tests: register common FLIRT sigs 
closes #538
 2021-05-01 08:06:56 -06:00
Capa Bot
82ce223c9b Sync capa-testfiles submodule 2021-04-30 21:06:56 +00:00
Capa Bot
f190b630b7 Sync capa-testfiles submodule 2021-04-30 21:06:48 +00:00
Capa Bot
9ceebb9bb2 Sync capa-testfiles submodule 2021-04-30 17:13:44 +00:00
William Ballenthin
404c7a7e88 tests: fix function id tests 2021-04-30 08:48:49 -06:00
William Ballenthin
55b83fc2b5 tests: re-enable function id test 2021-04-30 08:37:38 -06:00
William Ballenthin
7373437317 pep8 2021-04-27 13:12:20 -06:00
William Ballenthin
9ca1a7ebb6 extractors: do cast-to-int correctly 2021-04-27 13:07:27 -06:00
William Ballenthin
c79f461e39 Merge branch 'master' into function-id-flirt 2021-04-26 09:47:42 -06:00
Capa Bot
24cd301fa8 Sync capa-testfiles submodule 2021-04-26 14:53:44 +00:00
Capa Bot
e4a001170c Sync capa-testfiles submodule 2021-04-23 22:49:23 +00:00
Capa Bot
9257e326f3 Sync capa-testfiles submodule 2021-04-22 18:04:58 +00:00