gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-06-29 09:48:36 -07:00
Code Issues Packages Projects Releases Wiki Activity
2,746 Commits 55 Branches 49 Tags
b87b03300a9f59e42ecee7ffc8025a12676bc9e7
Commit Graph

2746 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Willi Ballenthin b87b03300a Revert "fix: temporarily accept x32/x64 flavors but ignore (#1014)" 
This reverts commit daf483309e.
 2022-06-28 14:27:48 -06:00
Capa Bot ecd88680dd Sync capa rules submodule 2022-06-28 20:26:53 +00:00
Capa Bot 45c39cfd7a Sync capa rules submodule 2022-06-28 20:11:57 +00:00
Capa Bot 46ad23fb30 Sync capa rules submodule 2022-06-28 20:04:59 +00:00
Capa Bot 0e6a050921 Sync capa rules submodule 2022-06-28 20:04:14 +00:00
Moritz f72f8b054a ci: use macos-11 (#1066) 
* ci: use macos-11

* ci: use macos-10.15 for build
 2022-06-28 21:47:06 +02:00
Willi Ballenthin 1d61b24eb0 Merge pull request #1055 from mandiant/dependabot/pip/types-requests-2.28.0 
build(deps-dev): bump types-requests from 2.27.30 to 2.28.0
 2022-06-28 11:35:09 -06:00
Willi Ballenthin 5a73a8d7bb Merge pull request #1069 from mandiant/fix-1053 
render: verbose: render metadata tokens correctly
 2022-06-28 11:30:48 -06:00
Willi Ballenthin b2507d14c0 Merge pull request #1070 from mandiant/williballenthin-patch-1 
changelog: document upcoming deprecation of SMDA backend
 2022-06-28 11:30:10 -06:00
Willi Ballenthin b6f932ea15 changelog: document upcoming deprecation of SMDA backend 
closes #1061
 2022-06-28 11:24:31 -06:00
Willi Ballenthin bb1afb3356 render: verbose: render metadata tokens correctly 
closes #1053
 2022-06-28 11:18:24 -06:00
Capa Bot d35ac32f0a Sync capa rules submodule 2022-06-28 17:13:42 +00:00
Willi Ballenthin cb6781a143 verbose: remove extraneous import 2022-06-28 11:11:00 -06:00
Willi Ballenthin e7fa1ae52c Merge pull request #1068 from mandiant/feat-lint-dotnet-filename 
linter: expect file path "dotnet" for ".NET" rules
 2022-06-28 11:05:37 -06:00
Willi Ballenthin 8b7ddc5679 linter: expect file path "dotnet" for ".NET" rules 
ref: https://github.com/mandiant/capa-rules/pull/568#discussion_r908718249
 2022-06-28 10:48:03 -06:00
Willi Ballenthin 3323d85067 Merge pull request #1067 from mandiant/fix-966 
main: suppress low level ELF parsing log messages
 2022-06-28 10:46:32 -06:00
Willi Ballenthin 9019e6b0f5 main: suppress low level ELF parsing log messages 
closes #966
 2022-06-28 10:45:38 -06:00
Capa Bot c6c2fc9f2a Sync capa rules submodule 2022-06-28 16:44:02 +00:00
Willi Ballenthin 6ea15901d6 Merge pull request #1064 from mandiant/mr-tz-patch-1 
Update README.md
 2022-06-28 10:42:44 -06:00
Willi Ballenthin 400e28c3f7 document rule branches (#1006) 
* doc: add rules documentation

* version: add accessor for capa major version and git checkout command

* doc: rules: document version output

* doc: rules: show example error due to mismatched rule version

* doc: rules: update links

* ci: tag major rule version test

* ci: tag major rule version

* doc: update changelog

* ci: force to replace tag if exists

* ci: simplify tagging step

* Update doc/rules.md

* feat: disable tag, show error branch cmd

* doc: update major version rules branch

* Apply suggestions from code review

Co-authored-by: Willi Ballenthin <willi.ballenthin@gmail.com>

* Update capa/main.py

* black

Co-authored-by: Moritz Raabe <moritz.raabe@mandiant.com>
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
 2022-06-28 18:38:51 +02:00
Moritz f2281b8e6e Update README.md 2022-06-28 18:33:42 +02:00
Willi Ballenthin ad88e51228 Merge pull request #1060 from mandiant/feat/frz-extractor-info 
Feat/frz extractor info
 2022-06-28 10:32:37 -06:00
Capa Bot 2b17b22d33 Sync capa rules submodule 2022-06-28 16:30:17 +00:00
Willi Ballenthin da6f6dd94f Merge pull request #1063 from mandiant/fix-blog-links 
readme: fix blog links
 2022-06-28 10:30:08 -06:00
Willi Ballenthin 09d444222a readme: fix blog links 
closes #800
 2022-06-28 10:27:31 -06:00
Capa Bot a5c9993b61 Sync capa rules submodule 2022-06-28 14:06:49 +00:00
Moritz f03eb87892 Merge pull request #1059 from mandiant/fix/linter-refs-authors 
feat: lint check value types
 2022-06-28 15:57:39 +02:00
Moritz Raabe a7c4761fef isort, black 2022-06-28 15:53:10 +02:00
Moritz Raabe e2156c3854 refactor: parametrize test 2022-06-28 15:49:21 +02:00
Moritz Raabe bf53958887 fix!: global feat frz address 2022-06-28 15:47:12 +02:00
Moritz Raabe e4d532e212 feat!: add extractor info to frz format 2022-06-28 15:43:59 +02:00
Moritz Raabe 9bf582a89a feat: lint check value types 
closes #1027
 2022-06-28 12:53:31 +02:00
dependabot[bot] 470995a541 build(deps-dev): bump types-requests from 2.27.30 to 2.28.0 
Bumps [types-requests](https://github.com/python/typeshed) from 2.27.30 to 2.28.0.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-requests
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-27 14:10:51 +00:00
Capa Bot 79ce903817 Sync capa rules submodule 2022-06-23 13:27:54 +00:00
Willi Ballenthin 6fa8f9e401 Merge pull request #1052 from mandiant/dependabot/pip/colorama-0.4.5 
build(deps): bump colorama from 0.4.4 to 0.4.5
 2022-06-21 09:45:21 -06:00
Willi Ballenthin fb99ef56e3 Merge pull request #986 from mandiant/feature-981 
add Address abstraction
 2022-06-21 09:44:57 -06:00
Willi Ballenthin be2dffe863 bulk-process: use new ResultDocument json 2022-06-20 14:43:30 -06:00
Willi Ballenthin e3804a0596 main: add types for collect_metadata 2022-06-20 14:43:18 -06:00
Willi Ballenthin 9ebea05933 show-capabilities-by-function: use new ResultDocument 2022-06-20 14:32:10 -06:00
Willi Ballenthin a453258a51 tests: fix render test for MBC 2022-06-20 14:25:18 -06:00
Willi Ballenthin 246ef58e7b tests: fix render test for ATT&CK metadata 2022-06-20 14:24:01 -06:00
dependabot[bot] d55d1facd5 build(deps): bump colorama from 0.4.4 to 0.4.5 
Bumps [colorama](https://github.com/tartley/colorama) from 0.4.4 to 0.4.5.
- [Release notes](https://github.com/tartley/colorama/releases)
- [Changelog](https://github.com/tartley/colorama/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/tartley/colorama/compare/0.4.4...0.4.5)

---
updated-dependencies:
- dependency-name: colorama
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-06-20 14:20:36 +00:00
William Ballenthin a5979d3b4d Merge branch 'feature-981' of github.com:fireeye/capa into feature-981 2022-06-14 17:43:24 -06:00
William Ballenthin af9049da6e dnfile: return NO_ADDRESS for base_address 2022-06-14 17:43:04 -06:00
William Ballenthin 6b5e125592 extractors: mypy 2022-06-14 17:42:04 -06:00
William Ballenthin ee5c86913d extractor: clarify base address handling 2022-06-14 17:40:04 -06:00
Willi Ballenthin 0ff3bf1e5e Update .github/workflows/tests.yml 2022-06-14 17:07:25 -06:00
Willi Ballenthin f5b79c0285 Update .github/workflows/tests.yml 2022-06-14 17:06:48 -06:00
William Ballenthin c417b5dd79 merge master 2022-06-14 17:05:46 -06:00
William Ballenthin bb74c73f6f sync rules 2022-06-14 17:02:34 -06:00