Skip to content

v0.5.5
Compare
Choose a tag to compare
@williballenthin williballenthin released this 05 Mar 15:52
· 435 commits to master since this release
v0.5.5
c0ab41b

overall, this makes parsing of FLIRT .pat files more robust. motivated by the work in mandiant/capa#435.

adds:

  • FLIRT: pat: line comments (extension of format, enables license headers)
  • FLIRT: pat: parse tail bytes
  • FLIRT: pat: handle large functions (greater than u16::MAX. this contradicts existing documentation of the FLIRT format!)
Assets 2
Loading