gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-27 21:23:12 -08:00
Code Issues Packages Projects Releases Wiki Activity
689 Commits 45 Branches 48 Tags
9fa128b27d89507a990154b5bfa2689590e4e4f2
Commit Graph

689 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
William Ballenthin
9fa128b27d tests: freeze: make py3 compatible 2020-08-16 00:05:04 -06:00
William Ballenthin
09bca1e5f7 setup: bump lancelot dep version 2020-08-16 00:04:39 -06:00
William Ballenthin
c623791a84 tests: lancelot: use common harness from fixtures 2020-08-15 23:32:50 -06:00
William Ballenthin
980a34adca setup: bump lancelot dep version 2020-08-15 23:32:35 -06:00
William Ballenthin
8721eb05eb tests: show found number of features when unexpected 2020-08-15 23:32:13 -06:00
William Ballenthin
512ea89662 Merge branch 'backend-lancelot' of github.com:fireeye/capa into backend-lancelot 2020-08-15 21:52:53 -06:00
William Ballenthin
15259d455c Merge branch 'master' into backend-lancelot 2020-08-15 21:52:28 -06:00
Willi Ballenthin
d8f2b7b4df Merge pull request #236 from fireeye/fix-225 
fix 225: declarative tests
 2020-08-17 10:06:22 -06:00
Willi Ballenthin
b49ed276a9 Merge pull request #238 from Ana06/zip-binaries 
Fix build workflow & zip binaries
 2020-08-17 07:47:08 -06:00
Ana María Martínez Gómez
a2da55fb6f Add version number to zip in build workflow 
Relay in `github.ref` (the release tag).
 2020-08-17 11:59:04 +02:00
Willi Ballenthin
1e097ef759 setup: add pylancelot dep on py3 2020-08-15 11:13:06 -06:00
Ana María Martínez Gómez
f7925c2990 Fix pypinstaller to version 3 in build workflow 
pyinstaller 4 doesn't support Python 2.7. Without a version, it takes
the last version making the workflow fail.
 2020-08-15 12:28:51 +02:00
Ana María Martínez Gómez
b94f665d4b Zip release binaries 
Update `build` workflow to zip the binaries before upload them. Use
linux to zip all the binaries.
 2020-08-15 12:28:48 +02:00
Ana María Martínez Gómez
68f27dfea4 Fix indentation of build workflow 
Correct indentation to make it easier to read.
 2020-08-15 09:11:18 +02:00
Ana María Martínez Gómez
35226e1e4e Use GitHub default repo token in build action 
As we this workflow modifies only the same repo, no extra token
(`CAPA_TOKEN`) is needed and we can use the default `GITHUB TOKEN`
instead.
 2020-08-15 09:11:16 +02:00
Capa Bot
9c40befdd3 Sync capa-testfiles submodule 2020-08-14 19:35:00 +00:00
William Ballenthin
c1b7176e36 submodule: testfiles update 2020-08-14 13:34:43 -06:00
William Ballenthin
259a0a2007 tests: ida: remove old print 2020-08-14 13:15:22 -06:00
William Ballenthin
eee565b596 tests: ida: tweak tests to fit IDA behavior 2020-08-14 13:10:38 -06:00
William Ballenthin
26061c25a5 tests: fixtures: add mapping from test data to md5 2020-08-14 12:58:08 -06:00
William Ballenthin
897da4237d tests: fixtures: remove lru_cache on some accessors 2020-08-14 12:48:19 -06:00
William Ballenthin
1923d479d8 tests: fixtures: fix name error 2020-08-14 12:35:30 -06:00
William Ballenthin
6b8bce4f42 tests: fixtures: factor out resolution of scope/sample 2020-08-14 12:34:00 -06:00
William Ballenthin
107a68628b tests: ida: attempt to use new framework (wip) 2020-08-14 12:22:59 -06:00
William Ballenthin
26c9811ba1 tests: viv: fix typo preventing some tests from running 2020-08-14 12:22:39 -06:00
William Ballenthin
b784f086b4 tests: make fixtures more consistent in prep for other backends 2020-08-14 12:04:53 -06:00
William Ballenthin
d161c094a6 setup: add backports.lru_cache for py2.7 2020-08-14 11:28:44 -06:00
William Ballenthin
8cbe3f8546 tests: move expected features into fixtures for reuse 
closes #225
 2020-08-14 11:25:00 -06:00
William Ballenthin
0e049ef56d viv: insn: fix gs extraction 2020-08-14 11:18:19 -06:00
William Ballenthin
f193ceb91a merge 2020-08-14 10:26:52 -06:00
Willi Ballenthin
ac7f079af8 Merge pull request #235 from fireeye/progressbar-tweaks 
main: progress bar updates (+rules, and realize iterators)
 2020-08-14 10:23:43 -06:00
William Ballenthin
5f47280e0d main: disable spinner when in quiet mode 2020-08-14 10:19:39 -06:00
Capa Bot
b7d39cf4c9 Sync capa rules submodule 2020-08-14 16:02:13 +00:00
William Ballenthin
de2c3c9800 main: display spinner while generating viv workspace 2020-08-14 09:38:08 -06:00
William Ballenthin
6e525a93d7 viv: insn: derefs: fix exception 2020-08-14 09:37:51 -06:00
William Ballenthin
90cdef5232 main: progress bar updates (+rules, and realize iterators) 2020-08-13 17:25:07 -06:00
William Ballenthin
fb19841997 Merge branch 'master' into backend-lancelot 2020-08-13 17:24:28 -06:00
William Ballenthin
40d16c925f main: progress bar updates (+rules, and realize iterators) 2020-08-13 17:23:36 -06:00
William Ballenthin
d5f73b47a4 main: use lancelot on py3 2020-08-13 13:35:09 -06:00
William Ballenthin
caf738ee4e lancelot: implement indirect call resolution 2020-08-13 13:22:50 -06:00
William Ballenthin
c6f27200fe lancelot: pull get_operand_target into helpers 2020-08-13 13:22:29 -06:00
Capa Bot
e3e13cdb11 Sync capa rules submodule 2020-08-13 18:51:28 +00:00
William Ballenthin
5c967cd6ef lancelot: insn: calls to/from 2020-08-13 12:39:32 -06:00
Willi Ballenthin
db3369fd09 Merge pull request #232 from Ana06/remove-switch 
extractor: remove characteristic(switch)
 2020-08-13 10:07:07 -06:00
Capa Bot
35086d4a69 Sync capa rules submodule 2020-08-13 16:06:21 +00:00
Ana María Martínez Gómez
adaac03d1d extractor: remove characteristic(switch) 
Get rid of the `characteristic(switch)` feature as any of our rules use
it and its analysis is not very easy. Analysis results most likely
differ across backends, leading to inconsistency.
 2020-08-13 16:47:01 +02:00
Capa Bot
199cccaef9 Sync capa rules submodule 2020-08-12 23:27:17 +00:00
Capa Bot
e64277ed41 Sync capa-testfiles submodule 2020-08-12 23:26:45 +00:00
Willi Ballenthin
744b4915c9 Merge pull request #226 from fireeye/enhancement-223 
IDA: resolve nested data references to strings/bytes
 2020-08-12 09:05:11 -06:00
Capa Bot
5d9ccf1f76 Sync capa rules submodule 2020-08-11 21:04:09 +00:00