gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-06-28 09:23:05 -07:00
Code Issues Packages Projects Releases Wiki Activity
799 Commits 54 Branches 49 Tags
2e8d02c0aba94de66d3435d92876904c3bc109de
Commit Graph

799 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
William Ballenthin 1873d0b7c5 *: py3 compat 2020-08-16 05:03:08 -06:00
William Ballenthin c032d556fb tests: freeze: make py3 compatible 2020-08-16 05:02:35 -06:00
William Ballenthin d7f1c23f4d tests: show found number of features when unexpected 2020-08-16 05:01:20 -06:00
Ana María Martínez Gómez f7925c2990 Fix pypinstaller to version 3 in build workflow 
pyinstaller 4 doesn't support Python 2.7. Without a version, it takes
the last version making the workflow fail.
 2020-08-15 12:28:51 +02:00
Ana María Martínez Gómez b94f665d4b Zip release binaries 
Update `build` workflow to zip the binaries before upload them. Use
linux to zip all the binaries.
 2020-08-15 12:28:48 +02:00
Ana María Martínez Gómez 68f27dfea4 Fix indentation of build workflow 
Correct indentation to make it easier to read.
 2020-08-15 09:11:18 +02:00
Ana María Martínez Gómez 35226e1e4e Use GitHub default repo token in build action 
As we this workflow modifies only the same repo, no extra token
(`CAPA_TOKEN`) is needed and we can use the default `GITHUB TOKEN`
instead.
 2020-08-15 09:11:16 +02:00
Capa Bot 9c40befdd3 Sync capa-testfiles submodule 2020-08-14 19:35:00 +00:00
William Ballenthin c1b7176e36 submodule: testfiles update 2020-08-14 13:34:43 -06:00
William Ballenthin 259a0a2007 tests: ida: remove old print 2020-08-14 13:15:22 -06:00
William Ballenthin eee565b596 tests: ida: tweak tests to fit IDA behavior 2020-08-14 13:10:38 -06:00
William Ballenthin 26061c25a5 tests: fixtures: add mapping from test data to md5 2020-08-14 12:58:08 -06:00
William Ballenthin 897da4237d tests: fixtures: remove lru_cache on some accessors 2020-08-14 12:48:19 -06:00
William Ballenthin 1923d479d8 tests: fixtures: fix name error 2020-08-14 12:35:30 -06:00
William Ballenthin 6b8bce4f42 tests: fixtures: factor out resolution of scope/sample 2020-08-14 12:34:00 -06:00
William Ballenthin 107a68628b tests: ida: attempt to use new framework (wip) 2020-08-14 12:22:59 -06:00
William Ballenthin 26c9811ba1 tests: viv: fix typo preventing some tests from running 2020-08-14 12:22:39 -06:00
William Ballenthin b784f086b4 tests: make fixtures more consistent in prep for other backends 2020-08-14 12:04:53 -06:00
William Ballenthin d161c094a6 setup: add backports.lru_cache for py2.7 2020-08-14 11:28:44 -06:00
William Ballenthin 8cbe3f8546 tests: move expected features into fixtures for reuse 
closes #225
 2020-08-14 11:25:00 -06:00
William Ballenthin 0e049ef56d viv: insn: fix gs extraction 2020-08-14 11:18:19 -06:00
Willi Ballenthin ac7f079af8 Merge pull request #235 from fireeye/progressbar-tweaks 
main: progress bar updates (+rules, and realize iterators)
 2020-08-14 10:23:43 -06:00
William Ballenthin 5f47280e0d main: disable spinner when in quiet mode 2020-08-14 10:19:39 -06:00
Capa Bot b7d39cf4c9 Sync capa rules submodule 2020-08-14 16:02:13 +00:00
William Ballenthin de2c3c9800 main: display spinner while generating viv workspace 2020-08-14 09:38:08 -06:00
William Ballenthin 6e525a93d7 viv: insn: derefs: fix exception 2020-08-14 09:37:51 -06:00
William Ballenthin 90cdef5232 main: progress bar updates (+rules, and realize iterators) 2020-08-13 17:25:07 -06:00
Capa Bot e3e13cdb11 Sync capa rules submodule 2020-08-13 18:51:28 +00:00
Willi Ballenthin db3369fd09 Merge pull request #232 from Ana06/remove-switch 
extractor: remove characteristic(switch)
 2020-08-13 10:07:07 -06:00
Capa Bot 35086d4a69 Sync capa rules submodule 2020-08-13 16:06:21 +00:00
Ana María Martínez Gómez adaac03d1d extractor: remove characteristic(switch) 
Get rid of the `characteristic(switch)` feature as any of our rules use
it and its analysis is not very easy. Analysis results most likely
differ across backends, leading to inconsistency.
 2020-08-13 16:47:01 +02:00
Capa Bot 199cccaef9 Sync capa rules submodule 2020-08-12 23:27:17 +00:00
Capa Bot e64277ed41 Sync capa-testfiles submodule 2020-08-12 23:26:45 +00:00
Willi Ballenthin 744b4915c9 Merge pull request #226 from fireeye/enhancement-223 
IDA: resolve nested data references to strings/bytes
 2020-08-12 09:05:11 -06:00
Capa Bot 5d9ccf1f76 Sync capa rules submodule 2020-08-11 21:04:09 +00:00
Capa Bot 15607d63ab Sync capa-testfiles submodule 2020-08-11 21:03:00 +00:00
Willi Ballenthin 362db6898a Merge pull request #230 from fireeye/enhancement-immediate-memory-reference-as-number 
adding support to emit number features for unmapped immediate memory references
 2020-08-11 14:59:26 -06:00
Michael Hunhoff 70b4546c33 adding test for unmapped immediate data reference 2020-08-11 14:13:43 -06:00
Michael Hunhoff 791afd7ac8 adding code to emit number feature for unmapped immediate data reference 2020-08-11 14:12:41 -06:00
Capa Bot 6f352283e6 Sync capa-testfiles submodule 2020-08-11 19:36:17 +00:00
Capa Bot db85fbab4f Sync capa rules submodule 2020-08-11 14:54:42 +00:00
mike-hunhoff 20cc23adc5 Merge pull request #228 from fireeye/bugfix-explorer-display-arch-decorator 
explorer: adding support to display arch decorator on numbers/offsets
 2020-08-11 07:50:08 -07:00
Michael Hunhoff 828819e13f switching to iterative solution for data reference search 2020-08-11 08:45:20 -06:00
Michael Hunhoff 79d94144c6 adding IDA extractor code to resolve nested data references for string and bytes features 2020-08-11 08:44:44 -06:00
Michael Hunhoff c46a1d2b44 black format changes 2020-08-11 08:26:48 -06:00
Capa Bot 7a18fbf9d4 Sync capa rules submodule 2020-08-11 07:19:00 +00:00
Capa Bot 7d62156a29 Sync capa-testfiles submodule 2020-08-11 07:12:56 +00:00
Michael Hunhoff def8130a24 adding support to display arch decorator on numbers/offsets 2020-08-10 18:27:37 -06:00
Capa Bot f7cd52826e Sync capa rules submodule 2020-08-05 18:51:51 +00:00
Capa Bot 23d31c3c2c Sync capa-testfiles submodule 2020-08-05 18:50:52 +00:00