Skip to content

Commit

Permalink
fix yara_details for subfiles (kevoreilly#2496)
Browse files Browse the repository at this point in the history 
* Fix template _subfile_info.html

* fix yara info for subfiles

* added subfile yara templates
  • Loading branch information
@ClaudioWayne
ClaudioWayne authored Feb 17, 2025
1 parent c85a484 commit d7519b0
Show file tree
Hide file tree
Showing 3 changed files with 102 additions and 2 deletions.
50 changes: 50 additions & 0 deletions web/templates/analysis/generic/_subfile_capeyara.html
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
<section id="static_analysis">
{% load key_tags %}
<div>
<h4>CAPE Yara Details</h4>
<p></p>
<div id="cape_yara_details">
{% for hit in sub_file.cape_yara %}
<div class="card">
<div class="card-header">
<h5>
<a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
data-target="#{{hit.name}}" aria-expanded="false">
{{hit.name}}</a>
</h5>
</div>
<div id="{{hit.name}}" class="collapse">
<div class="card-body">
<table class="table table-striped table-bordered" style="table-layout: fixed;">
{% if hit.strings %}
<tr>
<th style="border-top: 0; width: 15%;">Strings</th>
<td>
<ul style="margin-bottom: 0;">
{% for string in hit.strings %}
<li>{{string}}</li>
{% endfor %}
</ul>
</td>
</tr>
{% endif %}
{% if hit.addresses %}
<tr>
<th style="border-top: 0; width: 15%;">String Name: Address</th>
<td>
<ul style="margin-bottom: 0;">
{% for key, value in hit.addresses.items %}
<li>{{key}}: {{value}}</li>
{% endfor %}
</ul>
</td>
</tr>
{% endif %}
</table>
</div>
</div>
</div>
{% endfor %}
</div>
</div>
</section>
4 changes: 2 additions & 2 deletions web/templates/analysis/generic/_subfile_info.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -422,8 +422,8 @@
</tr>
</br>
{% endif %}
{% if config.yara_detail and sub_file.yara %} <div class="collapse" id="yara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_yara.html" %}</div></div></br>{% endif %}
{% if config.yara_detail and sub_file.cape_yara %} <div class="collapse" id="capeyara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_capeyara.html" %}</div></div></br>{% endif %}
{% if config.yara_detail and sub_file.yara %} <div class="collapse" id="yara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_subfile_yara.html" %}</div></div></br>{% endif %}
{% if config.yara_detail and sub_file.cape_yara %} <div class="collapse" id="capeyara_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_subfile_capeyara.html" %}</div></div></br>{% endif %}
{% if sub_file.pe %} <div class="collapse" id="pe_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_pe.html" %}</div></div></br>{% endif %}
{% if sub_file.dotnet %} <div class="collapse" id="dotnet_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_dotnet.html" %}</div></div></br>{% endif %}
{% if sub_file.pdf %} <div class="collapse" id="pdf_{{sub_file.sha256}}"> <div> {% include "analysis/generic/_pdf.html" %}</div></div></br>{% endif %}
Expand Down
50 changes: 50 additions & 0 deletions web/templates/analysis/generic/_subfile_yara.html
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
<section id="static_analysis">
{% load key_tags %}
<div>
<h4>Yara Details</h4>
<p></p>
<div id="yara_details">
{% for hit in sub_file.yara %}
<div class="card">
<div class="card-header">
<h5>
<a class="accordion-toggle" data-toggle="collapse" href="#{{hit.name}}"
data-target="#{{hit.name}}" aria-expanded="false">
{{hit.name}}</a>
</h5>
</div>
<div id="{{hit.name}}" class="collapse">
<div class="card-body">
<table class="table table-striped table-bordered" style="table-layout: fixed;">
{% if hit.strings %}
<tr>
<th style="border-top: 0; width: 15%;">Strings</th>
<td>
<ul style="margin-bottom: 0;">
{% for string in hit.strings %}
<li>{{string}}</li>
{% endfor %}
</ul>
</td>
</tr>
{% endif %}
{% if hit.addresses %}
<tr>
<th style="border-top: 0; width: 15%;">String Name: Address</th>
<td>
<ul style="margin-bottom: 0;">
{% for key, value in hit.addresses.items %}
<li>{{key}}: {{value}}</li>
{% endfor %}
</ul>
</td>
</tr>
{% endif %}
</table>
</div>
</div>
</div>
{% endfor %}
</div>
</div>
</section>

0 comments on commit d7519b0

Please sign in to comment.