gitea-mirror/capa - capa - Gitea: Git with a cup of tea

mirror of https://github.com/mandiant/capa.git synced 2025-12-16 09:30:46 -08:00

Author	SHA1	Message	Date
Yacine Elhamer	42baa10bcb	Merge branch 'process-thread-addresses' of https://github.com/yelhamer/capa into yelhamer-process-thread-addresses	2023-07-11 12:07:20 +01:00
Yacine Elhamer	63e273efd4	fix bugs and mypy issues	2023-07-10 15:52:33 +01:00
Willi Ballenthin	7f57fccefb	fix lints after sync with master	2023-07-10 02:55:50 +02:00
Willi Ballenthin	72e123e319	sync master	2023-07-10 02:50:18 +02:00
Willi Ballenthin	ae10a2ea34	introduce flake8-todos linter	2023-07-09 23:35:52 +02:00
Moritz	e140fba5df	enhance various dynamic-related functions (#1590 ) * enhance various dynamic-related functions * test_cape_features(): update API(NtQueryValueKey) feature count to 7 --------- Co-authored-by: Yacine Elhamer <elhamer.yacine@gmail.com> Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>	2023-07-07 13:59:12 +02:00
Willi Ballenthin	90e607fe9a	flake8	2023-07-06 18:11:48 +02:00
Yacine Elhamer	06aea6b97c	fix mypy and codestyle issues	2023-06-27 11:32:21 +01:00
Willi Ballenthin	81d35eb645	Merge branch 'dynamic-feature-extraction' into static-extractor	2023-06-27 09:42:16 +02:00
Yacine Elhamer	b172f9a354	FeatureExtractor alias: fix mypy typing issues by adding ininstance-based assert statements	2023-06-26 22:46:27 +01:00
Yacine Elhamer	c74c8871f8	scripts: add type-related assert statements	2023-06-26 21:06:35 +01:00
Yacine Elhamer	aff0c6b49b	show-featurex.py: bugfix in ida_main()	2023-06-26 09:41:14 +01:00
Yacine Elhamer	417bb42ac8	show_features.py: rename show_{function,process}_features to show_{static,dynamic}_features.py	2023-06-26 09:16:59 +01:00
Yacine Elhamer	5f6aade92b	get_format_from_report(): fix bugs and add a list of dynamic formats	2023-06-25 00:54:55 +01:00
Yacine Elhamer	0c62a5736e	add support for determining the format of a sandbox report	2023-06-24 23:51:12 +01:00
Yacine Elhamer	f1406c1ffd	scripts/show-features.py: prefix {static,dynamic}_analysis() functions' name with 'print_'	2023-06-23 13:58:34 +01:00
Yacine Elhamer	1cdc3e5232	fix codestyle	2023-06-23 13:48:49 +01:00
Yacine Elhamer	bd9870254e	Apply suggestions from code review: use EXTENSIONS_CAPE, and ident 'thread' by one more space	2023-06-23 13:31:35 +01:00
Yacine Elhamer	0442b8c1e1	Apply suggestions from code review: use is_ for booleans Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>	2023-06-23 13:27:20 +01:00
Yacine Elhamer	9f185ed5c0	remove incompatible bar union syntax	2023-06-22 15:59:23 +01:00
Yacine Elhamer	12d5beec6e	add type cast to fix get_extractor() typing issues	2023-06-22 15:51:56 +01:00
Yacine Elhamer	b77e68df19	fix codestyle and typing	2023-06-22 14:17:06 +01:00
Yacine Elhamer	07c48bca68	scripts/show-features.py: add dynamic feature extraction from cape reports	2023-06-22 13:56:54 +01:00
Yacine Elhamer	45002bd51d	Revert "scripts/show-features.py: add dynamic feature extraction from cape reports" This reverts commit `64189a4d08`.	2023-06-22 12:29:51 +01:00
Yacine Elhamer	64189a4d08	scripts/show-features.py: add dynamic feature extraction from cape reports	2023-06-22 12:16:31 +01:00
Willi Ballenthin	f1c495dc0a	*: use FORMAT_AUTO instead of string literal	2023-03-21 16:54:48 +01:00
Willi Ballenthin	1f3582c9c3	mypy	2023-03-21 16:45:24 +01:00
manasghandat	1336796c0c	code style : update remaining files (#1353 ) * code style: update string formatting using fstrings --------- Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com> Co-authored-by: Moritz <mr-tz@users.noreply.github.com>	2023-03-16 11:16:18 +01:00
Willi Ballenthin	b819033da0	lots of mypy	2022-12-14 10:37:39 +01:00
Willi Ballenthin	8527d02dc8	pylint fixes	2022-12-06 15:37:31 +00:00
Willi Ballenthin	3ef126fbd7	show-features: fix rendering addresses	2022-06-06 15:27:06 -06:00
Willi Ballenthin	f8b10a2c0a	render: verbose: update to use new result document	2022-06-06 13:48:41 -06:00
Willi Ballenthin	02cef8297c	pep8	2022-05-25 15:27:56 -06:00
Willi Ballenthin	b1fa5be7b1	show-features: render features in a tree to better group scopes	2022-05-25 15:08:44 -06:00
Moritz Raabe	d8c9941f6b	fix: filter address	2022-05-12 16:39:36 +02:00
Moritz Raabe	716a73dfb4	feat: add handles and type annotations	2022-05-12 15:42:25 +02:00
Willi Ballenthin	e029547035	show-features: learn to use Addresses	2022-04-08 18:33:49 -06:00
Mike Hunhoff	580a2d7e45	dotnet: basic detection and feature extraction (#987 )	2022-04-08 14:55:00 -06:00
Baptistin Boilot	4739d121a2	scripts: add backend parameter (-b) to show-features.py	2021-12-31 20:07:34 +01:00
Moritz Raabe	8de69c639a	s/fireeye/mandiant	2021-09-29 12:55:16 +02:00
William Ballenthin	8e757d2099	show-features: print function addresses, too	2021-08-24 16:32:44 -06:00
William Ballenthin	34819b289d	pep8	2021-08-11 15:08:31 -06:00
William Ballenthin	c1910d47f0	move is_global_feature into capa.features.common	2021-08-11 15:02:10 -06:00
William Ballenthin	294f74b209	extractors: viv: extract format and OS at all scopes	2021-08-11 14:44:41 -06:00
Moritz Raabe	5c8a4aafd7	test scripts and fix show-features	2021-06-29 21:16:31 +02:00
William Ballenthin	48858e114d	main: refactor handling of rules, signatures cli arguments	2021-06-15 11:54:57 -06:00
William Ballenthin	6f1f928434	main: when --signatures provided, override default set closes #630	2021-06-15 11:43:38 -06:00
William Ballenthin	766dcacdbe	move logic out of capa/render/__init__.py	2021-06-09 18:06:51 -06:00
William Ballenthin	fc9ad6c737	move extractors/ida/__init__.py logic to extractor.py	2021-06-09 17:55:44 -06:00
Willi Ballenthin	dcf4a056ee	show-features: skip library functions (#570 ) * show-features: skip library functions closes #569 * changelog	2021-05-20 10:34:48 +02:00

1 2

70 Commits