Commit Graph

1734 Commits

Author SHA1 Message Date
William Ballenthin cd06ee4544 main: correctly extract namespaces matches across scopes
closes #721
2021-08-10 13:05:31 -06:00
Moritz b5f23e7baf Merge pull request #660 from fireeye/ci/test-scripts
test scripts and fix show-features
2021-06-29 21:46:43 +02:00
Capa Bot f7e4273523 Sync capa rules submodule 2021-06-29 19:22:47 +00:00
Moritz Raabe 6860b9a040 address Willi's feedback 2021-06-29 21:16:31 +02:00
Moritz Raabe 5c8a4aafd7 test scripts and fix show-features 2021-06-29 21:16:31 +02:00
Moritz Raabe 02658d6962 do not process non-pe even with --format pe 2021-06-29 21:16:31 +02:00
Moritz 65b3c046a3 Merge pull request #661 from fireeye/ida/extract-api-flirt
ida extract library funcs identified via flirt
2021-06-29 09:23:21 +02:00
Moritz Raabe 04b5949a05 address Mike's feedback 2021-06-29 08:57:43 +02:00
Moritz Raabe 18c87e4e55 ida extract library funcs identified via flirt 2021-06-29 08:49:48 +02:00
Willi Ballenthin b84cc3128d Merge pull request #664 from fireeye/verify-pe-format
do not process non-pe even with --format pe
2021-06-28 12:09:54 -06:00
Willi Ballenthin f83ef470cb Merge pull request #662 from fireeye/dependabot/pip/mypy-0.910
build(deps-dev): bump mypy from 0.902 to 0.910
2021-06-28 11:54:28 -06:00
Willi Ballenthin 2928dd279c Merge pull request #663 from fireeye/dependabot/pip/ruamel-yaml-0.17.10
build(deps): bump ruamel-yaml from 0.17.9 to 0.17.10
2021-06-28 11:54:15 -06:00
Moritz Raabe f96d3fd8ba do not process non-pe even with --format pe 2021-06-28 18:21:01 +02:00
dependabot[bot] d094272e4a build(deps): bump ruamel-yaml from 0.17.9 to 0.17.10
Bumps [ruamel-yaml](https://sourceforge.net/p/ruamel-yaml/code/ci/default/tree) from 0.17.9 to 0.17.10.

---
updated-dependencies:
- dependency-name: ruamel-yaml
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-28 14:02:54 +00:00
dependabot[bot] 7eeab35ae8 build(deps-dev): bump mypy from 0.902 to 0.910
Bumps [mypy](https://github.com/python/mypy) from 0.902 to 0.910.
- [Release notes](https://github.com/python/mypy/releases)
- [Commits](https://github.com/python/mypy/compare/v0.902...v0.910)

---
updated-dependencies:
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-28 14:02:45 +00:00
Moritz 4e7b490bc3 Merge pull request #639 from fireeye/fix-630
more intuitive signature loading
2021-06-28 12:53:58 +02:00
Moritz Raabe 4ca9e168fe Merge branch 'master' into fix-630 2021-06-28 11:32:27 +02:00
Ana María Martínez Gómez e579edecb4 Merge pull request #548 from Ana06/explorer-analyze
explorer: add analyze option
2021-06-24 12:22:24 +02:00
Capa Bot 58aa3e33bf Sync capa rules submodule 2021-06-24 00:33:45 +00:00
Ana Maria Martinez Gomez 0685d36220 explorer: use bitmask + enum for analyze option 2021-06-23 11:23:27 +02:00
Ana Maria Martinez Gomez 2158be0a2e explorer: add analyze option
I would like to load capa explorer with an script and that it runs the
analysis without needing extra clicks. Introduce an analyze option for
this.

Loading capa explorer from the UI or with Alt+F5 behaves as before. The
following command as well:
```
ida_loader.load_and_run_plugin("capa_explorer", 0)
```
But the following command automatically runs the analysis without extra
clicks:
```
ida_loader.load_and_run_plugin("capa_explorer", 1)
```

Example of where I am using this:
https://github.com/Ana06/idapython/blob/master/idapythonrc.py#L22
2021-06-23 11:23:27 +02:00
Moritz 7922d08fd4 Merge pull request #617 from fireeye/changelog-reorg
changelog: add breaking change section and reorg
2021-06-23 07:47:53 +02:00
Moritz Raabe 44b47eb39c update release checklist 2021-06-23 07:44:08 +02:00
Moritz Raabe 45c4b4019a move breaking changes to top 2021-06-23 07:44:05 +02:00
Moritz Raabe 831dc577f4 add breaking change section and reorg 2021-06-23 07:40:33 +02:00
Willi Ballenthin 229d5ca549 Merge pull request #654 from fireeye/fix/653
resolve circular import failure
2021-06-22 17:47:06 -06:00
Michael Hunhoff 2872db8b23 resolve circular import failure 2021-06-22 16:12:07 -06:00
Moritz 7152525dbc Merge pull request #648 from fireeye/mr-tz-patch-1
update dependabot actor name
2021-06-22 09:07:12 +02:00
Willi Ballenthin d7d7aa76c8 Merge pull request #651 from fireeye/dependabot/pip/mypy-0.902
build(deps-dev): bump mypy from 0.901 to 0.902
2021-06-21 10:49:53 -06:00
dependabot[bot] 565bb96c9e build(deps-dev): bump mypy from 0.901 to 0.902
Bumps [mypy](https://github.com/python/mypy) from 0.901 to 0.902.
- [Release notes](https://github.com/python/mypy/releases)
- [Commits](https://github.com/python/mypy/compare/v0.901...v0.902)

---
updated-dependencies:
- dependency-name: mypy
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 16:47:28 +00:00
Willi Ballenthin 9fd6098e1e Merge pull request #650 from fireeye/dependabot/pip/types-backports-0.1.3
build(deps-dev): bump types-backports from 0.1.2 to 0.1.3
2021-06-21 10:47:10 -06:00
Willi Ballenthin 0c0929fd94 Merge pull request #649 from fireeye/dependabot/pip/isort-5.9.1
build(deps-dev): bump isort from 5.8.0 to 5.9.1
2021-06-21 10:46:59 -06:00
Willi Ballenthin 1343baa250 Merge pull request #646 from fireeye/dependabot/pip/types-pyyaml-5.4.3
build(deps-dev): bump types-pyyaml from 0.1.6 to 5.4.3
2021-06-21 10:46:43 -06:00
dependabot[bot] 6977477a39 build(deps-dev): bump types-backports from 0.1.2 to 0.1.3
Bumps [types-backports](https://github.com/python/typeshed) from 0.1.2 to 0.1.3.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-backports
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 16:44:34 +00:00
dependabot[bot] 86b3438a2d build(deps-dev): bump isort from 5.8.0 to 5.9.1
Bumps [isort](https://github.com/pycqa/isort) from 5.8.0 to 5.9.1.
- [Release notes](https://github.com/pycqa/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](https://github.com/pycqa/isort/compare/5.8.0...5.9.1)

---
updated-dependencies:
- dependency-name: isort
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 16:44:34 +00:00
dependabot[bot] a00c3b6d32 build(deps-dev): bump types-pyyaml from 0.1.6 to 5.4.3
Bumps [types-pyyaml](https://github.com/python/typeshed) from 0.1.6 to 5.4.3.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-pyyaml
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 16:44:34 +00:00
Willi Ballenthin 544ffdea8f Merge pull request #647 from fireeye/dependabot/pip/types-tabulate-0.1.1
build(deps-dev): bump types-tabulate from 0.1.0 to 0.1.1
2021-06-21 10:43:55 -06:00
dependabot[bot] e4b89f1d7b build(deps-dev): bump types-tabulate from 0.1.0 to 0.1.1
Bumps [types-tabulate](https://github.com/python/typeshed) from 0.1.0 to 0.1.1.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-tabulate
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 16:43:23 +00:00
Willi Ballenthin 73dd49ed21 Merge pull request #645 from fireeye/dependabot/pip/viv-utils-flirt--0.6.5
build(deps): bump viv-utils[flirt] from 0.6.4 to 0.6.5
2021-06-21 10:43:11 -06:00
Willi Ballenthin 0511eec67c Merge pull request #644 from fireeye/dependabot/pip/types-termcolor-0.1.1
build(deps-dev): bump types-termcolor from 0.1.0 to 0.1.1
2021-06-21 10:42:56 -06:00
Willi Ballenthin c7e2ca0b1a Merge pull request #643 from fireeye/dependabot/pip/types-colorama-0.4.2
build(deps-dev): bump types-colorama from 0.4.0 to 0.4.2
2021-06-21 10:42:46 -06:00
Capa Bot 03b15ce289 Sync capa rules submodule 2021-06-21 14:30:00 +00:00
Moritz 2d7ac73caa update dependabot actor name 2021-06-21 16:24:43 +02:00
dependabot[bot] 7fe53073fe build(deps): bump viv-utils[flirt] from 0.6.4 to 0.6.5
Bumps [viv-utils[flirt]](https://github.com/williballenthin/viv-utils) from 0.6.4 to 0.6.5.
- [Release notes](https://github.com/williballenthin/viv-utils/releases)
- [Commits](https://github.com/williballenthin/viv-utils/compare/v0.6.4...v0.6.5)

---
updated-dependencies:
- dependency-name: viv-utils[flirt]
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 14:02:11 +00:00
dependabot[bot] d1407f0a1e build(deps-dev): bump types-termcolor from 0.1.0 to 0.1.1
Bumps [types-termcolor](https://github.com/python/typeshed) from 0.1.0 to 0.1.1.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-termcolor
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 14:02:08 +00:00
dependabot[bot] f5a0e1cd08 build(deps-dev): bump types-colorama from 0.4.0 to 0.4.2
Bumps [types-colorama](https://github.com/python/typeshed) from 0.4.0 to 0.4.2.
- [Release notes](https://github.com/python/typeshed/releases)
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-colorama
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2021-06-21 14:02:06 +00:00
Willi Ballenthin 94485285f3 Merge pull request #640 from fireeye/fix-507
disable viv creation by default
2021-06-15 15:06:40 -06:00
Willi Ballenthin 466bc4995b Update CHANGELOG.md
Co-authored-by: Moritz <mr-tz@users.noreply.github.com>
2021-06-15 15:06:34 -06:00
William Ballenthin 7bce202122 doc: explain CAPA_SAVE_WORKSPACE 2021-06-15 12:31:56 -06:00
William Ballenthin 40c7401f0a pep8 2021-06-15 12:28:45 -06:00