From de93bbd2714c3e54edeaa5d74acd4ad06f8a24dc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Johannes=20B=C3=BClow?= Date: Tue, 19 Aug 2025 14:08:26 +0200 Subject: [PATCH] capa analysis results look nicer now --- scanners/capa/routes/capa.py | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/scanners/capa/routes/capa.py b/scanners/capa/routes/capa.py index 30eb627..2c32244 100644 --- a/scanners/capa/routes/capa.py +++ b/scanners/capa/routes/capa.py @@ -14,7 +14,6 @@ import json import os import capa.render.utils as rutils import capa.render.result_document as rd -import collections from capa.render.default import find_subrule_matches capa_bp = Blueprint('capa', __name__) @@ -55,7 +54,7 @@ def analyze_capa(): capability = rule.meta.name + f" ({count} matches)" caps[capability] = rule.meta.namespace for attack in rule.meta.attack: - tactics[attack.tactic] = attack.technique + attack.subtechnique + attack.id.strip("[").strip("]") + tactics[attack.tactic] = attack.technique + " " + attack.subtechnique + " " + attack.id.strip("[").strip("]") maec_categories = { "analysis_conclusion", @@ -71,7 +70,7 @@ def analyze_capa(): maec[maec_category] = maec_value for rule in rutils.capability_rules(doc): for mbc in rule.meta.mbc: - objectives[mbc.objective] = mbc.behavior + mbc.method + mbc.id.strip("[").strip("]") + objectives[mbc.objective] = mbc.behavior + " " + mbc.method + " " + mbc.id.strip("[").strip("]") return jsonify(capabilities=caps, tactics=tactics, maec=maec, objectives=objectives)