gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-22 07:10:29 -08:00
Code Issues Packages Projects Releases Wiki Activity
3,412 Commits 45 Branches 48 Tags
a64a88981f9685e8055af67385591a51828905b1
Commit Graph

52 Commits

Author SHA1 Message Date
Willi Ballenthin
a64a88981f tests: add another test demonstrating rd format output 2023-04-03 15:35:20 +02:00
Harsh Mehta
74009eb4a4 Updated Copyright (#1383) 
* Updated Copyright
 2023-03-14 17:58:43 +01:00
Moritz
0a78187c69 optimize tests to speed them up (#1287) 
* optimize tests to speed them up

Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>
 2023-01-23 11:25:04 +01:00
Willi Ballenthin
ed24db4460 extractors: remove SMDA backend 
closes #1210
closes #1062
 2022-12-06 15:33:17 +00:00
Mike Hunhoff
3c1cd67f60 dotnet: support property feature extraction (#1168) 2022-09-09 12:09:41 -06:00
Moritz
3976e5858d feat: verify rule metadata format on load (#1160) 2022-09-08 10:56:59 -06:00
Willi Ballenthin
3103307601 tests: fix reference error 2022-06-10 14:58:26 -06:00
Willi Ballenthin
1c771da848 pep8 2022-06-10 14:47:23 -06:00
William Ballenthin
c3418fddb5 tests: json: fix address representation 2022-06-08 13:29:04 -06:00
William Ballenthin
faf414e3d8 tests: add more dotnet tests 2022-06-08 13:28:53 -06:00
Willi Ballenthin
0987141970 tests: add tests demonstrating rending of .NET samples 2022-06-06 15:13:20 -06:00
Willi Ballenthin
b35fe6cdb2 json, render: work with and serialize addresses 2022-05-24 13:52:56 -06:00
Willi Ballenthin
49adb8de0c pep8 2022-03-29 13:00:28 -06:00
Willi Ballenthin
fb6b60bee3 tests: add tests demonstrating instruction (sub)scope matching 2022-03-29 12:58:38 -06:00
William Ballenthin
b1f4a2853e Merge branch 'master' of github.com:fireeye/capa into fix-802 2021-10-27 09:25:29 -06:00
William Ballenthin
07412f047d tests: fix check of status code E_MISSING_FILE 2021-10-27 09:24:22 -06:00
William Ballenthin
4451b76f89 pep8 2021-10-26 15:21:28 -06:00
William Ballenthin
a1075b63ec tests: add demonstration of bb layout 2021-10-26 15:20:08 -06:00
William Ballenthin
ac59e50b5f move capa/features/__init__.py logic to common.py 
also cleanup imports across the board,
thanks to pylance.
 2021-06-09 22:20:53 -06:00
Moritz Raabe
94089ff43f parse att&ck for output doc 2021-06-02 10:37:19 +02:00
Moritz Raabe
8a386b6909 improve progress bar output 2021-05-20 13:56:29 +02:00
Moritz Raabe
998f4a6bad auto detect shellcode file extensions 2021-04-08 18:49:22 +02:00
Ana Maria Martinez Gomez
c0d6468347 py3: Remove Python 2 tests 
Tests don't need to support Python 2 any longer. Do not run tests with
Python 2.
 2021-04-07 18:20:07 +02:00
Ana Maria Martinez Gomez
c522f5094a Use -j option in test_backend_option 
Use `-j` option in `test_backend_option` to check the extractor and that
rules have been extracted. This way we don't need to check if a concrete
rule matches, but only that at least a rule matches.
 2021-03-03 18:33:20 +01:00
Ana Maria Martinez Gomez
29b6772721 Test backend option 
As `get_extractor` returns only vivisect now, `test_main` is not run for
smda. Test that capa works with all backends. It doesn't test that the
backend is actually called.
 2021-03-03 17:36:51 +01:00
Daniel Plohmann (jupiter)
36822926af initial commit for backend-smda 2020-10-29 11:28:22 +01:00
Moritz Raabe
679316946e addressing Willi's feedback 2020-10-22 20:10:47 +02:00
Moritz Raabe
fbe104d254 get decoded sample path 
closes #328
 2020-10-22 19:56:41 +02:00
William Ballenthin
a25a86e2d6 render: dont display rules that are also matched as subrule matches 
closes #224
 2020-09-02 10:20:54 -06:00
William Ballenthin
322d2ad549 tests: main: add tests for #262 2020-08-31 15:51:49 -06:00
Moritz Raabe
34e7991081 black 20.8b1 updates 2020-08-27 11:26:28 +02:00
William Ballenthin
b084f7cb9b pep8 2020-08-16 05:18:39 -06:00
William Ballenthin
89edaf4c5c tests: xfail things that won't work on py3 2020-08-16 05:17:17 -06:00
William Ballenthin
1873d0b7c5 *: py3 compat 2020-08-16 05:03:08 -06:00
William Ballenthin
b784f086b4 tests: make fixtures more consistent in prep for other backends 2020-08-14 12:04:53 -06:00
Ana María Martínez Gómez
adaac03d1d extractor: remove characteristic(switch) 
Get rid of the `characteristic(switch)` feature as any of our rules use
it and its analysis is not very easy. Analysis results most likely
differ across backends, leading to inconsistency.
 2020-08-13 16:47:01 +02:00
William Ballenthin
baeea5b6ec *: update license header to reference Apache 2.0 
closes #173
 2020-07-22 15:05:24 -06:00
Ana María Martínez Gómez
07764fb31f Use isort 5 
Run `isort --profile black --length-sort --line-width 120 .`

Update documentation as well.
 2020-07-16 22:02:53 +02:00
William Ballenthin
3faf175da7 *: add license header 
closes #144
 2020-07-15 14:14:53 -06:00
William Ballenthin
867de57062 main: find_capabilities: extract feature counts per item, too 
closes #95
closes #96
 2020-07-03 10:12:03 -06:00
William Ballenthin
a50bd4c394 pep8 2020-07-02 15:51:08 -06:00
William Ballenthin
9ad52da6d0 add test for #78 2020-07-02 15:50:56 -06:00
William Ballenthin
8f7cb6dad0 pep8 2020-07-02 11:01:18 -06:00
William Ballenthin
41c32013bb Merge branch 'master' into fmt-black 2020-07-02 11:00:14 -06:00
William Ballenthin
1188103d1c pep8: isort 2020-07-02 10:52:05 -06:00
Moritz Raabe
c37365f045 fix render, cleanup feature string display 2020-07-02 18:48:14 +02:00
William Ballenthin
c185e9ef09 pep8: black 2020-07-02 10:32:26 -06:00
William Ballenthin
db2b1caeae Merge branch 'master' into fmt-black 2020-07-02 10:25:24 -06:00
Ana María Martínez Gómez
64124c0b64 Remove True from Characteristic rules and output 
Get rid of `True` in characteristic (rules, output and json) as it is
implicit. This way, the same syntax is used for characteristic as for
the rest of the features.

Co-authored-by: William Ballenthin <william.ballenthin@fireeye.com>
 2020-07-02 16:50:15 +02:00
William Ballenthin
d23ef48bb6 pep8 2020-07-01 12:33:13 -06:00