gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-06-28 01:13:20 -07:00
Code Issues Packages Projects Releases Wiki Activity
5,110 Commits 54 Branches 49 Tags
100df45cc055eea9fd2b5da77511dee701bd8ea6
Commit Graph

5110 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Yacine Elhamer 902d726ea6 capa/main.py: change json import positioning to start of the file 2023-06-22 23:57:03 +01:00
Yacine Elhamer 3f35b426dd Apply suggestions from code review 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-06-22 21:58:01 +01:00
Yacine Elhamer 761d861888 Update fixtures.py samples path 2023-06-22 16:55:00 +01:00
Yacine Elhamer 9f185ed5c0 remove incompatible bar union syntax 2023-06-22 15:59:23 +01:00
Yacine Elhamer 63b2077335 get_extractor(): set return type to FeatureExtractor, and cast into the appropriate class before each usage 2023-06-22 15:55:24 +01:00
Yacine Elhamer 12d5beec6e add type cast to fix get_extractor() typing issues 2023-06-22 15:51:56 +01:00
Yacine Elhamer b77e68df19 fix codestyle and typing 2023-06-22 14:17:06 +01:00
Yacine Elhamer fcdd4fa410 update changelog 2023-06-22 14:03:01 +01:00
Yacine Elhamer 07c48bca68 scripts/show-features.py: add dynamic feature extraction from cape reports 2023-06-22 13:56:54 +01:00
Yacine Elhamer 79ff76d124 main.py: fix bugs for adding the cape extractor/format 2023-06-22 13:55:50 +01:00
Yacine Elhamer de2ba1ca94 add the cape report format to main and across several other locations 2023-06-22 12:55:39 +01:00
Yacine Elhamer 45002bd51d Revert "scripts/show-features.py: add dynamic feature extraction from cape reports" 
This reverts commit 64189a4d08.
 2023-06-22 12:29:51 +01:00
Yacine Elhamer be7ebad956 Revert "tests/fixtures.py: update path forming for the cape sample" 
This reverts commit 6712801b01.
 2023-06-22 12:18:34 +01:00
Yacine Elhamer 64189a4d08 scripts/show-features.py: add dynamic feature extraction from cape reports 2023-06-22 12:16:31 +01:00
Capa Bot 33a3170bc4 Sync capa rules submodule 2023-06-22 07:11:54 +00:00
Willi Ballenthin 708cb28ed0 Merge pull request #1546 from yelhamer/cape-extractor 
add the CAPE feature extractor
 2023-06-21 09:33:26 +02:00
Yacine Elhamer 6712801b01 tests/fixtures.py: update path forming for the cape sample 
Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-06-20 20:30:06 +01:00
Yacine Elhamer f29db693c8 fix git submodules error 2023-06-20 20:25:19 +01:00
Yacine Elhamer 0502bfd95d remove cape report from get_md5_hash() function 2023-06-20 20:24:38 +01:00
Yacine Elhamer 78a3901c61 cape/helpers.py: add a find_process() function for quick-fetching processes from the cape report 2023-06-20 15:59:22 +01:00
Yacine Elhamer 0a4e3008af fixtures.py: update CAPE's feature count and presence tests 2023-06-20 13:51:16 +01:00
Willi Ballenthin 2ce4f8769d Merge pull request #1513 from mandiant/ida-test-runner 
tests: refine the IDA test runner
 2023-06-20 14:28:12 +02:00
Willi Ballenthin 4dedc24f9f Merge branch 'master' into ida-test-runner 2023-06-20 14:28:05 +02:00
Yacine Elhamer d03ba5394f cape/global_.py: add warning messages if architecture/os/format are unknown 2023-06-20 13:26:25 +01:00
Yacine Elhamer 2262e6c7d0 Merge branch 'test-cape-extractor' into cape-extractor 2023-06-20 13:22:15 +01:00
Yacine Elhamer 31a349b13b cape feature tests: fix feature count function typo 2023-06-20 13:21:52 +01:00
Yacine Elhamer 1ba143ef26 Merge branch 'test-cape-extractor' into cape-extractor 2023-06-20 13:20:49 +01:00
Yacine Elhamer 1532ce1bab add tests for extracting argument values 2023-06-20 13:20:33 +01:00
Yacine Elhamer fa9b920b71 cape/thread.py: do not extract return values, and extract argument values as Strings 2023-06-20 13:17:53 +01:00
Yacine Elhamer 40b2d5f724 add a remote origin to submodule, and switch to that branch 2023-06-20 12:40:47 +01:00
Yacine Elhamer 0623a5a8de point capa-testfiles submodule towards dynamic-feautre-extractor branch 2023-06-20 12:13:57 +01:00
Yacine Elhamer cfa1d08e7e update testfiles submodule to point at dev branch 2023-06-20 11:28:40 +01:00
Yacine Elhamer 6196814672 cape/file.py: fix KeyError bug 2023-06-20 10:51:18 +01:00
Yacine Elhamer f5af2bf393 Merge branch 'test-cape-extractor' into cape-extractor 2023-06-20 10:47:56 +01:00
Yacine Elhamer 374fb033c1 add support for gzip compressed cape samples, and fix QakBot sample path 2023-06-20 10:29:52 +01:00
Yacine Elhamer 4db80e75a4 add mode and encoding parameters to open() 2023-06-20 10:13:06 +01:00
Yacine Elhamer 8547277958 tests/fixtures.py bugfix: remove redundant lambda function 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-06-20 10:10:42 +01:00
Yacine Elhamer ec3366b0e5 Update tests/fixtures.py 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-06-20 10:09:27 +01:00
Yacine Elhamer 48bd04b387 tests/fixtures.py: return direct extractor with no intermediate variable 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-06-20 10:09:00 +01:00
Yacine Elhamer 41a481252c Update CHANGELOG.md 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-06-20 10:08:12 +01:00
Yacine Elhamer a7cf3b5b10 features/insn.py: revert added strace-based API feature 2023-06-20 10:04:37 +01:00
Yacine Elhamer ba63188f27 cape/file.py: fix bug in call to helpers.generate_symbols() 
Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-06-20 10:02:57 +01:00
Yacine Elhamer 9cc34cb70f cape/file.py: fix imports ordering and format 2023-06-20 00:19:55 +01:00
Yacine Elhamer b9a4d72b42 cape/file.py: add usage of helpers.generate_symbols() 2023-06-20 00:12:21 +01:00
Yacine Elhamer 8eef210547 update changelog 2023-06-19 23:57:51 +01:00
Yacine Elhamer ef999ed954 rules/__init__.py: remove redundant HBI features 2023-06-19 23:56:10 +01:00
Yacine Elhamer 33de609560 Revert "removed redundant HBI features" 
This reverts commit c88f859dae.
 2023-06-19 23:55:22 +01:00
Yacine Elhamer 624151c3f7 Revert "update changelog" 
This reverts commit 49b77d5477.
 2023-06-19 23:55:12 +01:00
Yacine Elhamer c88f859dae removed redundant HBI features 2023-06-19 23:55:06 +01:00
Yacine Elhamer 49b77d5477 update changelog 2023-06-19 23:49:19 +01:00