gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-22 23:26:21 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,498 Commits 45 Branches 48 Tags
39d2a70679b01f7a7cd0f08e22221cd0d5bd6511
Commit Graph

301 Commits

Author SHA1 Message Date
Aayush Goel
39d2a70679 Update detect_duplicate_features.py 
Using get_rules menthod to get set of all existing rules.
 2023-05-08 17:29:01 +05:30
Aayush Goel
ec6b6a2266 Update detect_duplicate_features.py 2023-05-08 14:58:30 +05:30
Aayush Goel
9eacf72366 Update detect_duplicate_features.py 
loading yaml file using capa.rule.Rule.from_yaml.
Returning any exception/errors occuring while checking the files.
 2023-05-06 17:36:13 +05:30
Aayush Goel
30516c33b7 Update detect_duplicate_features.py 
Improved parse routine based on suggestions.

Co-Authored-By: Moritz <mr-tz@users.noreply.github.com>
 2023-05-05 15:17:43 +05:30
Aayush Goel
1c558a203d Update detect_duplicate_features.py 
Added a main routine and using argparse to retrieve these from the command line
 2023-05-03 22:32:22 +05:30
Aayush Goel
09865ccd9b Fixes Linting Issues 
Update detect_duplicate_features.py
 2023-04-27 06:46:02 +05:30
Aayush Goel
256611bef5 Create detect_duplicate_features.py 
Fixes #1451
Python script to detect feature overlap between new and existing CAPA rules. Checks if the a feature in new rules exists in an existing rule
 2023-04-27 06:00:38 +05:30
Pratham Chauhan
068ac0ca2c fix black 2023-04-05 16:29:53 +05:30
Pratham Chauhan
eef1548baa fix capy2yara.py 2023-04-05 16:28:00 +05:30
Willi Ballenthin
80112bac64 add scripts showing conversion to/from protobuf format 2023-03-23 10:58:22 +01:00
Willi Ballenthin
a9ba133506 bulk-process: fix some variable references 2023-03-22 09:48:20 +01:00
Willi Ballenthin
7ef167fcd0 Update scripts/bulk-process.py 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-03-22 09:44:00 +01:00
Willi Ballenthin
c1ca4ab703 isort 2023-03-21 17:22:43 +01:00
Willi Ballenthin
43bcf401b2 bulk-process: reference error 2023-03-21 16:57:16 +01:00
Willi Ballenthin
f1c495dc0a *: use FORMAT_AUTO instead of string literal 2023-03-21 16:54:48 +01:00
Willi Ballenthin
1f3582c9c3 mypy 2023-03-21 16:45:24 +01:00
manasghandat
1336796c0c code style : update remaining files (#1353) 
* code style: update string formatting using fstrings

---------

Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-03-16 11:16:18 +01:00
Willi Ballenthin
961daf6c36 Merge pull request #1366 from ggold7046/patch-1 
Update profile-memory.py
 2023-03-11 13:14:09 +01:00
AG
6321adc411 Update match-function-id.py 
Updated with f string for enhanced readability.
 2023-03-11 12:43:22 +05:30
AG
02e451a2b1 Update profile-memory.py 
Updated with f string for enhanced readability.
 2023-03-11 12:29:59 +05:30
Willi Ballenthin
8cac47038c Merge pull request #1354 from ggold7046/patch-1 
Update import-to-bn.py
 2023-03-10 17:18:21 +01:00
AG
50935372ca Update import-to-ida.py 
Updated with f string for enhanced readability.
 2023-03-10 01:36:17 +05:30
AG
d8f89d49d4 Update import-to-bn.py 
Used f string for enhanced readability.
 2023-03-10 01:17:59 +05:30
manasghandat
5128638071 code style: update lint.py (#1352) 
* code style: update lint.py
 2023-03-09 07:28:47 +01:00
Moritz
6a222a6139 Update black (#1307) 
* build(deps-dev): bump black from 22.12.0 to 23.1.0

Bumps [black](https://github.com/psf/black) from 22.12.0 to 23.1.0.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](https://github.com/psf/black/compare/22.12.0...23.1.0)

---
updated-dependencies:
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* reformat black 23.1.0

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-07 15:50:15 +01:00
Moritz
b5c6cdeaa1 Update ATT&CK and MBC lint data (#1297) 
* sort by ID

* update ATT&CK/MBC lint data via script
 2023-02-01 09:56:10 +01:00
Willi Ballenthin
83eefd343c Update scripts/capa2yara.py 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-01-24 15:33:37 +01:00
Willi Ballenthin
61112c2527 lint: fix pbar counts 2023-01-21 20:16:49 +01:00
Willi Ballenthin
67cfefd2df main: get_rules: remove progress bar 2023-01-21 19:38:23 +01:00
Willi Ballenthin
e30dd08dec cache: add doc 2023-01-21 18:20:14 +01:00
Willi Ballenthin
68603a9cc7 Update scripts/cache-ruleset.py 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-01-23 12:13:07 +01:00
Willi Ballenthin
6c83db9977 Update scripts/cache-ruleset.py 
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2023-01-23 12:12:57 +01:00
Willi Ballenthin
a7afdec2e1 cache: accept cache_dir parameter 2023-01-20 16:10:41 +01:00
Willi Ballenthin
56a0bedac9 scripts: add tool to cache a ruleset to a directory 2023-01-20 15:50:17 +01:00
Willi Ballenthin
6ad471a914 Merge branch 'master' into rules-cache 2023-01-20 14:51:32 +01:00
Willi Ballenthin
476ffabae9 rules: cache the ruleset to disk 
ref: #1212
 2023-01-20 14:50:00 +01:00
Moritz
fa0ddba436 add format to global features and code refactors (#1284) 
* refactor: get format handling

* add format to global features
 2023-01-19 13:31:00 +01:00
Moritz
5fa2a87747 fix dotnet and pe format handling (#1256) 2023-01-04 17:46:51 +01:00
Josh Soref
c4ebb0a31d spelling: unescaped 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
f9b3d6304c spelling: uncommitted 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
1c85f530b1 spelling: objects 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
c11633c5db spelling: minimum 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
ea0a708f35 spelling: interesting 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
9e3a48aa8d spelling: globally 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:32:39 -05:00
Josh Soref
68efa7316b spelling: dictionary 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:25:22 -05:00
Josh Soref
1fa9180fee spelling: beginning 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:25:22 -05:00
Josh Soref
801c80d7a2 spelling: alphanum 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2023-01-04 00:25:22 -05:00
Willi Ballenthin
b819033da0 lots of mypy 2022-12-14 10:37:39 +01:00
Willi Ballenthin
1caeb248ca pylint: fix old-style super calls 2022-12-06 16:02:21 +00:00
Willi Ballenthin
8527d02dc8 pylint fixes 2022-12-06 15:37:31 +00:00