From c2346f41cb42d62f6f1fe6001c5b691fd6529427 Mon Sep 17 00:00:00 2001 From: Moritz Date: Wed, 8 Feb 2023 21:34:45 +0100 Subject: [PATCH] update to v5.0.0 (#1308) --- CHANGELOG.md | 37 ++++++++++++++++++++++++++++++++----- capa/version.py | 2 +- doc/release.md | 2 +- 3 files changed, 34 insertions(+), 7 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 1b7c09f37..5bfb38134 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,36 @@ ## master (unreleased) +### New Features + +### Breaking Changes + +### New Rules (0) + +- + +### Bug Fixes + +### capa explorer IDA Pro plugin + +### Development + +### Raw diffs +- [capa v5.0.0...master](https://github.com/mandiant/capa/compare/v5.0.0...master) +- [capa-rules v5.0.0...master](https://github.com/mandiant/capa-rules/compare/v5.0.0...master) + + +## v5.0.0 (2023-02-08) +This capa version comes with major improvements and additions to better handle .NET binaries. To showcase this we've updated and added over 30 .NET rules. + +Additionally, capa now caches its rule set for better performance. The capa explorer also caches its analysis results, so that multiple IDA Pro or plugin invocations don't need to repeat the same analysis. + +We have removed the SMDA backend and changed the program return codes to be positive numbers. + +Other improvements to highlight include better ELF OS detection, various rendering bug fixes, and enhancements to the feature extraction. We've also added support for Python 3.11. + +Thanks for all the support, especially to @jsoref, @bkojusner, @edeca, @richardweiss80, @joren485, @ryantxu1, @mwilliams31, @anushkavirgaonkar, @MalwareMechanic, @Still34, @dzbeck, @johnk3r, and everyone else who submitted bugs and provided feedback! + ### New Features - verify rule metadata format on load #1160 @mr-tz - dotnet: emit property features #1168 @anushkavirgaonkar @@ -94,7 +124,6 @@ - host-interaction/file-system/reference-absolute-stream-path-on-windows blas.kojusner@mandiant.com - nursery/generate-method-via-reflection-in-dotnet michael.hunhoff@mandiant.com - nursery/unmanaged-call-via-dynamic-pinvoke-in-dotnet michael.hunhoff@mandiant.com -- ### Bug Fixes - render: convert feature attributes to aliased dictionary for vverbose #1152 @mike-hunhoff @@ -128,11 +157,9 @@ - fix: UnboundLocalError x2 #1302 @mike-hunhoff - cache capa results across IDA sessions #1279 @mr-tz -### Development - ### Raw diffs -- [capa v4.0.1...master](https://github.com/mandiant/capa/compare/v4.0.1...master) -- [capa-rules v4.0.1...master](https://github.com/mandiant/capa-rules/compare/v4.0.1...master) +- [capa v4.0.1...v5.0.0](https://github.com/mandiant/capa/compare/v4.0.1...v5.0.0) +- [capa-rules v4.0.1...v5.0.0](https://github.com/mandiant/capa-rules/compare/v4.0.1...v5.0.0) ## v4.0.1 (2022-08-15) diff --git a/capa/version.py b/capa/version.py index af021c706..1c661ff7b 100644 --- a/capa/version.py +++ b/capa/version.py @@ -1,4 +1,4 @@ -__version__ = "4.0.1" +__version__ = "5.0.0" def get_major_version(): diff --git a/doc/release.md b/doc/release.md index ec950e886..6381a5817 100644 --- a/doc/release.md +++ b/doc/release.md @@ -3,7 +3,7 @@ - [ ] Ensure all [milestoned issues/PRs](https://github.com/mandiant/capa/milestones) are addressed, or reassign to a new milestone. - [ ] Add the `dont merge` label to all PRs that are close to be ready to merge (or merge them if they are ready) in [capa](https://github.com/mandiant/capa/pulls) and [capa-rules](https://github.com/mandiant/capa-rules/pulls). - [ ] Ensure the [CI workflow succeeds in master](https://github.com/mandiant/capa/actions/workflows/tests.yml?query=branch%3Amaster). -- [ ] Ensure that `python scripts/lint.py rules/ --thorough` succeeds (only `missing examples` offenses are allowed in the nursery). +- [ ] Ensure that `python scripts/lint.py rules/ --thorough` succeeds (only `missing examples` offenses are allowed in the nursery). You can [manually trigger a thorough lint](https://github.com/mandiant/capa-rules/actions/workflows/tests.yml) in CI via the "Run workflow" option. - [ ] Review changes - capa https://github.com/mandiant/capa/compare/\...master - capa-rules https://github.com/mandiant/capa-rules/compare/\\...master