gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2025-12-06 12:51:03 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
add-cfg-info
capa/tests/test_scripts.py
Moritz Raabe 6860b9a040 address Willi's feedback
2021-06-29 21:16:31 +02:00

66 lines
2.1 KiB
Python
Raw Permalink Blame History

# Copyright (C) 2020 FireEye, Inc. All Rights Reserved.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at: [package root]/LICENSE.txt
# Unless required by applicable law or agreed to in writing, software distributed under the License
# is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and limitations under the License.
import os
import sys
import subprocess
import pytest
CD = os.path.dirname(__file__)
def get_script_path(s):
return os.path.join(CD, "..", "scripts", s)
def get_file_path():
return os.path.join(CD, "data", "9324d1a8ae37a36ae560c37448c9705a.exe_")
def get_rules_path():
return os.path.join(CD, "..", "rules")
def get_rule_path():
return os.path.join(get_rules_path(), "lib", "allocate-memory.yml")
@pytest.mark.parametrize(
"script,args",
[
pytest.param("capa2yara.py", [get_rules_path()]),
pytest.param("capafmt.py", [get_rule_path()]),
# not testing lint.py as it runs regularly anyway
pytest.param("match-function-id.py", [get_file_path()]),
pytest.param("show-capabilities-by-function.py", [get_file_path()]),
pytest.param("show-features.py", [get_file_path()]),
pytest.param("show-features.py", ["-F", "0x407970", get_file_path()]),
],
)
def test_scripts(script, args):
script_path = get_script_path(script)
p = run_program(script_path, args)
assert p.returncode == 0
def test_bulk_process(tmpdir):
# create test directory to recursively analyze
t = tmpdir.mkdir("test")
with open(os.path.join(CD, "data", "ping_täst.exe_"), "rb") as f:
t.join("test.exe_").write_binary(f.read())
p = run_program(get_script_path("bulk-process.py"), [t.dirname])
assert p.returncode == 0
def run_program(script_path, args):
args = [sys.executable] + [script_path] + args
print("running: '%s'" % args)
return subprocess.run(args)
Reference in New Issue View Git Blame Copy Permalink