Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

simplify metadata rendering #91

Closed
mr-tz opened this issue Jul 3, 2020 · 3 comments · Fixed by #104
Closed

simplify metadata rendering #91

mr-tz opened this issue Jul 3, 2020 · 3 comments · Fixed by #104
Labels
enhancement New feature or request

Comments

@mr-tz
Copy link
Collaborator

mr-tz commented Jul 3, 2020

I propose the following formats to reduce duplicate information (MD5) and display the most important information first.

capa report could be included as a header/heading as well

default before

+------------------------+--------------------------------------------------------------+
| capa report for        | 34404a3fb9804977c6ab86cb991fb130                             |
| timestamp              | 2020-07-03T12:41:55.267000                                   |
| version                | 0.0.0                                                        |
| path                   | tests\data\34404a3fb9804977c6ab86cb991fb130.exe_             |
| md5                    | 34404a3fb9804977c6ab86cb991fb130                             |
+------------------------+--------------------------------------------------------------+

>>>>>
after

+------------------------+--------------------------------------------------------------+
| md5                    | 34404a3fb9804977c6ab86cb991fb130                             |
| path                   | tests\data\34404a3fb9804977c6ab86cb991fb130.exe_             |
| timestamp              | 2020-07-03T12:41:55.267000                                   |
| capa version           | 0.0.0                                                        |
+------------------------+--------------------------------------------------------------+



verbose, vverbose (should use same function) before

capa report for  34404a3fb9804977c6ab86cb991fb130
timestamp        2020-07-03T12:42:07.813000
version          0.0.0
path             tests\data\34404a3fb9804977c6ab86cb991fb130.exe_
md5              34404a3fb9804977c6ab86cb991fb130
sha1             b345e6fae155bfaf79c67b38cf488bb17d5be56d
sha256           c6930e298bba86c01d0fe2c8262c46b4fce97c6c5037a193904cfc634246fbec
format           auto
extractor        VivisectFeatureExtractor
base address     0x400000

>>>>>
after

md5              34404a3fb9804977c6ab86cb991fb130
sha1             b345e6fae155bfaf79c67b38cf488bb17d5be56d
sha256           c6930e298bba86c01d0fe2c8262c46b4fce97c6c5037a193904cfc634246fbec
path             tests\data\34404a3fb9804977c6ab86cb991fb130.exe_
timestamp        2020-07-03T12:42:07.813000
capa version     0.0.0
format           auto
extractor        VivisectFeatureExtractor
base address     0x400000
@mr-tz mr-tz added enhancement New feature or request question Further information is requested labels Jul 3, 2020
@mr-tz
Copy link
Collaborator Author

mr-tz commented Jul 3, 2020

additionally we could integrate the meta information shown here:

INFO:capa:format: blob, platform: windows, architecture: i386, number of functions: 42
INFO:capa:analyzed file and extracted 112 features

@williballenthin williballenthin changed the title Meta data information simplify metadata rendering Jul 3, 2020
@williballenthin williballenthin mentioned this issue Jul 3, 2020
Closed
@williballenthin
Copy link
Collaborator

image

@williballenthin
Copy link
Collaborator

image

williballenthin added a commit that referenced this issue Jul 5, 2020
@williballenthin
render: simplify metadata display
ff63973 
closes #91
@williballenthin williballenthin mentioned this issue Jul 5, 2020
Merged
@williballenthin williballenthin added in-pr and removed question Further information is requested labels Jul 5, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

render: simplify metadata display mandiant/capa
2 participants
@williballenthin @mr-tz