gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-06-28 17:33:19 -07:00
Code Issues Packages Projects Releases Wiki Activity
5,110 Commits 54 Branches 49 Tags
100df45cc055eea9fd2b5da77511dee701bd8ea6
Commit Graph

5110 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
linpeiyu164 7031c68a85 fix wrong indentation level for args.backend 2023-03-11 00:07:24 +08:00
Willi Ballenthin 3a7326726e Merge pull request #1357 from ggold7046/patch-4 
Update insn.py
 2023-03-10 10:04:29 +01:00
Willi Ballenthin f01d79df46 Merge pull request #1358 from ggold7046/patch-5 
Update file.py
 2023-03-10 10:04:00 +01:00
AG df6de3446c Update file.py 
Updated with f string for enhanced readability.
 2023-03-10 13:10:02 +05:30
AG eaeef59583 Update insn.py 
Updated with f strings for enhanced readability.
 2023-03-10 13:03:04 +05:30
manasghandat f9c7ca2941 fix CI issue in tests 2023-03-10 10:34:17 +05:30
AG 50935372ca Update import-to-ida.py 
Updated with f string for enhanced readability.
 2023-03-10 01:36:17 +05:30
AG d8f89d49d4 Update import-to-bn.py 
Used f string for enhanced readability.
 2023-03-10 01:17:59 +05:30
Zander Work 7e823057b9 Apply suggestions from code review 
Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-03-09 11:51:19 -05:00
manasghandat e4d69984d3 Merge branch 'fstring' of https://github.com/manasghandat/capa into fstring 2023-03-09 22:04:13 +05:30
manasghandat acd04e7181 Merge branch 'mandiant:master' into fstring 2023-03-09 22:03:42 +05:30
manasghandat 22a53bb1dc fix as per review 2023-03-09 22:01:52 +05:30
manasghandat aaef16f51b Merge branch 'master' of https://github.com/manasghandat/capa into fstring 2023-03-09 22:00:37 +05:30
manasghandat 8613c88a60 update according to review 2023-03-09 21:59:16 +05:30
manasghandat 6070bd562e Update scripts/import-to-ida.py 
Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-03-09 21:21:14 +05:30
Willi Ballenthin 01c4ac822c Merge pull request #1344 from mandiant/fix/1333 
explorer: improve embedded PE detection
 2023-03-09 15:49:10 +01:00
manasghandat 05dbdd4473 code style: add fstrings 2023-03-09 17:19:34 +05:30
Xusheng 64323b394a Encode the path with utf8 and then convert to hex in find_binja_path 2023-03-09 16:32:21 +08:00
Xusheng 70f6f1cd03 Use the binja extractor to get functions/basic blocks/instructions when the feature extractor is executed alone 2023-03-09 16:01:51 +08:00
Xusheng e9d4a23dad Do MLIL basic block look-up in get_basic_blocks to avoid a O(n^2) algorithm 2023-03-09 15:53:44 +08:00
mr-tz 3cdbc66375 refactor 2023-03-09 07:40:58 +01:00
manasghandat 5128638071 code style: update lint.py (#1352) 
* code style: update lint.py
 2023-03-09 07:28:47 +01:00
manasghandat 1f80791f8f code style: update lint.py with correct format 2023-03-08 21:19:14 +05:30
mr-tz 44d8e693b0 improve int/Integer handling 2023-03-08 16:06:57 +01:00
manasghandat 3bdc61f5ee code style: update lint.py 2023-03-08 20:02:33 +05:30
mr-tz a7e4d265e2 convert rd meta to proto 2023-03-08 14:45:26 +01:00
Willi Ballenthin 0ac497ab59 Merge pull request #1346 from mandiant/dependabot/pip/tqdm-4.65.0 
build(deps): bump tqdm from 4.64.1 to 4.65.0
 2023-03-08 14:35:46 +01:00
Zander Work dbb0200147 update changelog 2023-03-07 00:20:19 -05:00
Zander Work ff7a93f364 show overriden format/os in output 2023-03-07 00:15:42 -05:00
Zander Work 8f6a660f3d initial support for os override 2023-03-07 00:11:33 -05:00
Xusheng 64c542502b Fix the placement of some imports 2023-03-07 11:30:35 +08:00
Xusheng b4974a80bb Fix typo in OS name 2023-03-07 11:06:18 +08:00
Mike Hunhoff 95f23dafe5 Update CHANGELOG.md 2023-03-06 08:55:32 -07:00
Mike Hunhoff 02dc42154b Update CHANGELOG.md 
Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-03-06 08:53:57 -07:00
dependabot[bot] 4047780c08 build(deps): bump tqdm from 4.64.1 to 4.65.0 
Bumps [tqdm](https://github.com/tqdm/tqdm) from 4.64.1 to 4.65.0.
- [Release notes](https://github.com/tqdm/tqdm/releases)
- [Commits](https://github.com/tqdm/tqdm/compare/v4.64.1...v4.65.0)

---
updated-dependencies:
- dependency-name: tqdm
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-06 14:59:16 +00:00
Xusheng c648af2cb4 Select a different test file for the nzxor feature 2023-03-05 12:52:49 +08:00
Xusheng 4a698ffdff Add a Binary Ninja backend for capa 2023-03-05 12:52:49 +08:00
Xusheng 1babdb069f Update readme for generating rule cache 2023-03-04 18:46:36 +08:00
Xusheng b49213bef6 Include the type of value when the value of a Number is unexpected 2023-03-04 18:46:36 +08:00
Xusheng 42e877671b Update gitignore for pipfile and cache folder 2023-03-04 18:46:36 +08:00
Mike Hunhoff 14c18727db update CHANGELOG 2023-03-03 09:55:45 -07:00
Mike Hunhoff aacfcaaa23 explorer: improve embedded PE detection 2023-03-03 09:52:50 -07:00
Mike Hunhoff 9f3428e1c3 explorer: fix plugin exception when loaded under idat (#1341) 2023-03-02 13:42:43 -07:00
Moritz 52de09a032 Fix byte/string extraction and unit tests (#1339) 
* Fix wrong expected results on string and bytes tests. Fix https://github.com/mandiant/capa/issues/1336

* Fix IDA insn/byte extractor checks wrong address. Fix https://github.com/mandiant/capa/issues/1327

* fix vivisect string check and tests

---------

Co-authored-by: Xusheng <xusheng@vector35.com>
 2023-03-02 10:33:14 +01:00
Capa Bot be6bb879f3 Sync capa rules submodule 2023-03-01 15:50:20 +00:00
Capa Bot f7371c4a9f Sync capa rules submodule 2023-03-01 15:09:07 +00:00
Capa Bot bd7cf8cdd1 Sync capa rules submodule 2023-02-28 10:41:07 +00:00
Willi Ballenthin 70b39cbd2c Merge pull request #1328 from mandiant/dependabot/pip/types-tabulate-0.9.0.1 
build(deps-dev): bump types-tabulate from 0.9.0.0 to 0.9.0.1
 2023-02-28 10:50:37 +01:00
dependabot[bot] 199a5cff4b build(deps-dev): bump types-tabulate from 0.9.0.0 to 0.9.0.1 
Bumps [types-tabulate](https://github.com/python/typeshed) from 0.9.0.0 to 0.9.0.1.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-tabulate
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-02-27 14:59:14 +00:00
Capa Bot 501e213dce Sync capa rules submodule 2023-02-27 08:59:54 +00:00