search

mandiant / capa

The FLARE team's open-source tool to identify capabilities in executable files.
https://mandiant.github.io/capa/
Apache License 2.0
4.48k stars 535 forks source link

Handles circular dependencies while getting rules and dependencies #2014

Closed Aayush-Goel-04 closed 7 months ago

Aayush-Goel-04 commented 7 months ago

closes #1747 handles circular dependencies in filter_rules_by_meta and get_rules_and_dependencies

Checklist

Aayush-Goel-04 commented 7 months ago

Can you explain this part here support -t=metafield <k>? https://github.com/mandiant/capa/blob/9a449b6bd923da7577d880cc1c13f65fe1baf84d/capa/rules/__init__.py#L1599-L1606

Aayush-Goel-04 commented 7 months ago

Will work on updating the tests to resolve tests failing due to scope term "unspecified".

need to regenrate the rdoc files (rd files have scope unspecified)

Not sure about, what changes to do in capa/render/proto/capa.proto file. Need help here.

mr-tz commented 7 months ago

Can you explain this part here support -t=metafield <k>?

Examples would be -t=name write or -t=authors aayush. The current implementation works though and it doesn't seem worth the effort right now.