{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":272815213,"defaultBranch":"master","name":"capa","ownerLogin":"mandiant","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2020-06-16T21:24:57.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/331209?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1717746746.0","currentOid":""},"activityList":{"items":[{"before":"76a9f063909dbc9b6d7d2181c1f766b1d3d21a46","after":"d14ce78956aff657d69cfc58c4abe96104434855","ref":"refs/heads/feat/1755","pushedAt":"2024-06-07T12:35:23.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"mr-tz","name":"Moritz","path":"/mr-tz","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/17606537?s=80&v=4"},"commit":{"message":"Merge branch 'master' into feat/1755","shortMessageHtmlLink":"Merge branch 'master' into feat/1755"}},{"before":"7fd9e504c5c6301de1c1b0a3c2ff4fab8e961120","after":"26c1859e9ab0d24a6ca98d0cf492af8185dea5bf","ref":"refs/heads/fix/2053","pushedAt":"2024-06-07T08:04:48.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"pyproject: don't use dnfile 0.15 yet","shortMessageHtmlLink":"pyproject: don't use dnfile 0.15 yet"}},{"before":"ecac530e2f47b8215b14a593da0dcdaa8a0166cd","after":"7fd9e504c5c6301de1c1b0a3c2ff4fab8e961120","ref":"refs/heads/fix/2053","pushedAt":"2024-06-07T07:59:19.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"doc: installation: describe requirements.txt usage","shortMessageHtmlLink":"doc: installation: describe requirements.txt usage"}},{"before":"a7fe047d423d77dcc0c11c682025e396e5549b74","after":"ecac530e2f47b8215b14a593da0dcdaa8a0166cd","ref":"refs/heads/fix/2053","pushedAt":"2024-06-07T07:56:47.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"changelog","shortMessageHtmlLink":"changelog"}},{"before":"868f8c7bc15c6bfb03dba2b22a190d54ff6c8468","after":"a7fe047d423d77dcc0c11c682025e396e5549b74","ref":"refs/heads/fix/2053","pushedAt":"2024-06-07T07:55:51.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"pyproject: document dev/build profile dependency policies","shortMessageHtmlLink":"pyproject: document dev/build profile dependency policies"}},{"before":null,"after":"868f8c7bc15c6bfb03dba2b22a190d54ff6c8468","ref":"refs/heads/fix/2053","pushedAt":"2024-06-07T07:52:26.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"relax pyproject dependency versions and introduce requirements.txt\n\ncloses #2053\ncloses #2079","shortMessageHtmlLink":"relax pyproject dependency versions and introduce requirements.txt"}},{"before":"0f94a3b9f669189e257c79a04876415913956d68","after":null,"ref":"refs/heads/rebase-2080","pushedAt":"2024-06-07T03:54:50.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"}},{"before":"d10d2820b2ed17a2313f71f38e741fd0312cedab","after":"76a4a5899f814b8c260c86dbed0df13bdc49edc6","ref":"refs/heads/master","pushedAt":"2024-06-07T03:54:49.000Z","pushType":"pr_merge","commitsCount":3,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"test_scripts: avoid unsupported logic combinations","shortMessageHtmlLink":"test_scripts: avoid unsupported logic combinations"}},{"before":"207a48e1e3d24e2c674a3f9e77c76657d6146930","after":"76a9f063909dbc9b6d7d2181c1f766b1d3d21a46","ref":"refs/heads/feat/1755","pushedAt":"2024-06-06T16:48:21.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"mike-hunhoff","name":"Mike Hunhoff","path":"/mike-hunhoff","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42192796?s=80&v=4"},"commit":{"message":"Merge branch 'feat/1755' of github.com:mandiant/capa into feat/1755","shortMessageHtmlLink":"Merge branch 'feat/1755' of github.com:mandiant/capa into feat/1755"}},{"before":"6efb46e1d699abd030f221200da8a129723424d7","after":"207a48e1e3d24e2c674a3f9e77c76657d6146930","ref":"refs/heads/feat/1755","pushedAt":"2024-06-06T08:45:37.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"Merge branch 'master' into feat/1755","shortMessageHtmlLink":"Merge branch 'master' into feat/1755"}},{"before":"8e3e2253afd3a5add0f0dfaaeb468f273fe3ce16","after":"0f94a3b9f669189e257c79a04876415913956d68","ref":"refs/heads/rebase-2080","pushedAt":"2024-06-06T08:44:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"test_scripts: avoid unsupported logic combinations","shortMessageHtmlLink":"test_scripts: avoid unsupported logic combinations"}},{"before":"d4a0beb301fa653c7c840817fc5387acd2e6061f","after":null,"ref":"refs/heads/dependabot/pip/types-requests-2.32.0.20240602","pushedAt":"2024-06-06T08:43:09.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"}},{"before":"5239e40bebec3e73bb56b8672764126cef9a8234","after":"d10d2820b2ed17a2313f71f38e741fd0312cedab","ref":"refs/heads/master","pushedAt":"2024-06-06T08:43:08.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"build(deps): bump types-requests from 2.32.0.20240523 to 2.32.0.20240602\n\nBumps [types-requests](https://github.com/python/typeshed) from 2.32.0.20240523 to 2.32.0.20240602.\n- [Commits](https://github.com/python/typeshed/commits)\n\n---\nupdated-dependencies:\n- dependency-name: types-requests\n  dependency-type: direct:production\n  update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"build(deps): bump types-requests from 2.32.0.20240523 to 2.32.0.20240602"}},{"before":"8d305aec8e70641df05d4a8f708c52d28a47f349","after":"8e3e2253afd3a5add0f0dfaaeb468f273fe3ce16","ref":"refs/heads/rebase-2080","pushedAt":"2024-06-06T08:33:49.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"rules: add references to existing issues","shortMessageHtmlLink":"rules: add references to existing issues"}},{"before":null,"after":"8d305aec8e70641df05d4a8f708c52d28a47f349","ref":"refs/heads/rebase-2080","pushedAt":"2024-06-06T08:18:48.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"rules: match: optimize rule matching by better indexing rule by features\n\nImplement the \"tighten rule pre-selection\" algorithm described here:\nhttps://github.com/mandiant/capa/issues/2063#issuecomment-2100498720\n\nIn summary:\n\n> Rather than indexing all features from all rules,\n> we should pick and index the minimal set (ideally, one) of\n> features from each rule that must be present for the rule to match.\n> When we have multiple candidates, pick the feature that is\n> probably most uncommon and therefore \"selective\".\n\nThis seems to work pretty well. Total evaluations when running against\nmimikatz drop from 19M to 1.1M (wow!) and capa seems to match around\n3x more functions per second (wow wow).\n\nWhen doing large scale runs, capa is about 25% faster when using the\nvivisect backend (analysis heavy) or 3x faster when using the\nupcoming BinExport2 backend (minimal analysis).","shortMessageHtmlLink":"rules: match: optimize rule matching by better indexing rule by features"}},{"before":"1f1e142102d530add8059f1b76d509ba6a72a43e","after":"b376a8401c82452d7d6ea658da2c15ab61ba74bf","ref":"refs/heads/perf-rule-pre-selection","pushedAt":"2024-06-06T07:49:48.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"black","shortMessageHtmlLink":"black"}},{"before":"b34667ff5e29d0fae413fa529cddd7488d25da25","after":"1f1e142102d530add8059f1b76d509ba6a72a43e","ref":"refs/heads/perf-rule-pre-selection","pushedAt":"2024-06-06T07:48:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"rules: match: re-introduce default rule scores","shortMessageHtmlLink":"rules: match: re-introduce default rule scores"}},{"before":"78665fc13e2497ffa510181d765af8bcdb20a7b6","after":"6efb46e1d699abd030f221200da8a129723424d7","ref":"refs/heads/feat/1755","pushedAt":"2024-06-05T18:16:40.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mike-hunhoff","name":"Mike Hunhoff","path":"/mike-hunhoff","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42192796?s=80&v=4"},"commit":{"message":"binexport: add additional debug info to thunk calculation assert","shortMessageHtmlLink":"binexport: add additional debug info to thunk calculation assert"}},{"before":"bce8f7b5e52cb6788bdae9b7942e06db02f5ad18","after":"5239e40bebec3e73bb56b8672764126cef9a8234","ref":"refs/heads/master","pushedAt":"2024-06-05T12:15:42.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"capa-bot","name":"Capa Bot","path":"/capa-bot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/68270450?s=80&v=4"},"commit":{"message":"Sync capa-testfiles submodule","shortMessageHtmlLink":"Sync capa-testfiles submodule"}},{"before":"0cf936581658e69f48dc9dec72c34ae83f3a06d5","after":"bce8f7b5e52cb6788bdae9b7942e06db02f5ad18","ref":"refs/heads/master","pushedAt":"2024-06-05T09:40:58.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"capa-bot","name":"Capa Bot","path":"/capa-bot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/68270450?s=80&v=4"},"commit":{"message":"Sync capa rules submodule","shortMessageHtmlLink":"Sync capa rules submodule"}},{"before":"30d23c4d97b9f6d681fcf58e38a94034d34c03b4","after":"0cf936581658e69f48dc9dec72c34ae83f3a06d5","ref":"refs/heads/master","pushedAt":"2024-06-05T08:49:13.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"capa-bot","name":"Capa Bot","path":"/capa-bot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/68270450?s=80&v=4"},"commit":{"message":"Sync capa-testfiles submodule","shortMessageHtmlLink":"Sync capa-testfiles submodule"}},{"before":"b3ed42f5f9a7d45a09647df96cea7dde54698922","after":"30d23c4d97b9f6d681fcf58e38a94034d34c03b4","ref":"refs/heads/master","pushedAt":"2024-06-05T08:31:13.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mr-tz","name":"Moritz","path":"/mr-tz","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/17606537?s=80&v=4"},"commit":{"message":"render maec/* fields (#2087)\n\n* Render maec/* fields\r\n\r\n* add test for render_maec\r\n\r\n---------\r\n\r\nCo-authored-by: Soufiane Fariss <soufiane.fariss@um5s.net.ma>\r\nCo-authored-by: Moritz <mr-tz@users.noreply.github.com>","shortMessageHtmlLink":"render maec/* fields (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2316423908\" data-permission-text=\"Title is private\" data-url=\"https://github.com/mandiant/capa/issues/2087\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/mandiant/capa/pull/2087/hovercard\" href=\"https://github.com/mandiant/capa/pull/2087\">#2087</a>)"}},{"before":"45b7b59899328005686521488fba38959318032b","after":"78665fc13e2497ffa510181d765af8bcdb20a7b6","ref":"refs/heads/feat/1755","pushedAt":"2024-06-04T21:35:25.000Z","pushType":"push","commitsCount":16,"pusher":{"login":"mike-hunhoff","name":"Mike Hunhoff","path":"/mike-hunhoff","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42192796?s=80&v=4"},"commit":{"message":"merge upstream","shortMessageHtmlLink":"merge upstream"}},{"before":"508a09ef25b429456eac152aae98ac20cf893097","after":"b3ed42f5f9a7d45a09647df96cea7dde54698922","ref":"refs/heads/master","pushedAt":"2024-06-04T21:25:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"capa-bot","name":"Capa Bot","path":"/capa-bot","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/68270450?s=80&v=4"},"commit":{"message":"Sync capa-testfiles submodule","shortMessageHtmlLink":"Sync capa-testfiles submodule"}},{"before":"fe2e80fb90c8807af6acf16e65f14c2ec995d871","after":"45b7b59899328005686521488fba38959318032b","ref":"refs/heads/feat/1755","pushedAt":"2024-06-04T20:37:23.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"mike-hunhoff","name":"Mike Hunhoff","path":"/mike-hunhoff","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42192796?s=80&v=4"},"commit":{"message":"binexport: fix lints and imports","shortMessageHtmlLink":"binexport: fix lints and imports"}},{"before":"e517d7dd7764ad30b914958af8d543798695f6d8","after":"508a09ef25b429456eac152aae98ac20cf893097","ref":"refs/heads/master","pushedAt":"2024-06-04T16:47:41.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mr-tz","name":"Moritz","path":"/mr-tz","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/17606537?s=80&v=4"},"commit":{"message":"include rule caching in PyInstaller build process (#2097)\n\n* include rule caching in PyInstaller build process\r\n\r\nThe following commit introduces a new function that caches the capa\r\nrule set, so that users don't have to manually run ./scripts/cache-\r\nruleset.py, before running pyinstaller.\r\n\r\n* ci: omit Cache rule set step from build.yml workflow\r\n\r\n* refactor: move cache generation to cache.py\r\n\r\n* mkdir cache directory when it does not exist\r\n\r\n---------\r\n\r\nCo-authored-by: Soufiane Fariss <soufiane.fariss@um5s.net.ma>\r\nCo-authored-by: Moritz <mr-tz@users.noreply.github.com>","shortMessageHtmlLink":"include rule caching in PyInstaller build process (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2322000235\" data-permission-text=\"Title is private\" data-url=\"https://github.com/mandiant/capa/issues/2097\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/mandiant/capa/pull/2097/hovercard\" href=\"https://github.com/mandiant/capa/pull/2097\">#2097</a>)"}},{"before":"457cfe018053f224af9ad6681e767aee1268fa6c","after":"b34667ff5e29d0fae413fa529cddd7488d25da25","ref":"refs/heads/perf-rule-pre-selection","pushedAt":"2024-06-04T14:05:04.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"black","shortMessageHtmlLink":"black"}},{"before":"e1252b0704c969c3f0fd7f16b1af0408c05df52b","after":"457cfe018053f224af9ad6681e767aee1268fa6c","ref":"refs/heads/perf-rule-pre-selection","pushedAt":"2024-06-04T11:18:03.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"rules: more comments describing how features are scored","shortMessageHtmlLink":"rules: more comments describing how features are scored"}},{"before":"960ee864b9daf116e3040b4bf06ce947158b04aa","after":"e1252b0704c969c3f0fd7f16b1af0408c05df52b","ref":"refs/heads/perf-rule-pre-selection","pushedAt":"2024-06-04T10:57:03.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"williballenthin","name":"Willi Ballenthin","path":"/williballenthin","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/156560?s=80&v=4"},"commit":{"message":"Merge branch 'perf-rule-pre-selection' of github.com:mandiant/capa into perf-rule-pre-selection","shortMessageHtmlLink":"Merge branch 'perf-rule-pre-selection' of github.com:mandiant/capa in…"}},{"before":"f98465abc644b1c81bcdbcb7e94e73c3d56285a8","after":"fe2e80fb90c8807af6acf16e65f14c2ec995d871","ref":"refs/heads/feat/1755","pushedAt":"2024-06-04T10:44:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"mr-tz","name":"Moritz","path":"/mr-tz","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/17606537?s=80&v=4"},"commit":{"message":"update tight loop tests","shortMessageHtmlLink":"update tight loop tests"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEXzSmngA","startCursor":null,"endCursor":null}},"title":"Activity · mandiant/capa"}