Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Show matched strings in matched samples #38

Open
ITAYC0HEN opened this issue Apr 4, 2020 · 3 comments
Open

Show matched strings in matched samples #38

ITAYC0HEN opened this issue Apr 4, 2020 · 3 comments
Assignees
@msm-code @mickol34
Labels
zone:backend Backend oriented tasks zone:frontend Frontend oriented tasks
Milestone
v1.6.0

Comments

@ITAYC0HEN
Copy link
Collaborator

Description

When looking for interesting samples in the internal dataset, it is great to see the context in which a given sample was found. By showing the matched strings when possible (in context, maybe with partial 32* bytes of hexdump) you will provide the user meaningful information. This can be done via tooltip.

This info can be retrieved from yara -sL

image
@msm-code msm-code self-assigned this Apr 7, 2020
This was referenced Apr 10, 2020
Closed
Open
@msm-code
Copy link
Contributor

msm-code commented May 3, 2020

For now, let's just add matched strings (let's leave tooltips as a potential future improvement). This can be readily extracted from yara API, and it should be easy to show in the UI

@msm-code msm-code added this to the v1.2.0 milestone May 3, 2020
@ITAYC0HEN
Copy link
Collaborator Author

sounds good. The context is important but can be added later or something.
As for the implementation, make sure only to show it upon user desire (e.g hovering)

@msm-code msm-code modified the milestones: v1.2.0, v1.3.0 May 15, 2020
@msm-code msm-code removed this from the v1.3.0 milestone Nov 30, 2021
This was referenced Sep 16, 2024
Open
Open
@msm-cert
Copy link
Member

Also known as "the oldest open issue in mquery"

Split into two tasks:

@msm-cert msm-cert added zone:frontend Frontend oriented tasks zone:backend Backend oriented tasks labels Sep 16, 2024
@msm-cert msm-cert mentioned this issue Sep 16, 2024
Open
@msm-cert msm-cert added this to the v1.5.0 milestone Sep 29, 2024
@msm-cert msm-cert modified the milestones: v1.5.0, Sprint 1 Oct 17, 2024
@msm-cert msm-cert removed this from the v1.5.0 milestone Nov 18, 2024
@msm-cert msm-cert added this to the v1.6.0 milestone Nov 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@msm-code msm-code

@mickol34 mickol34

Labels
zone:backend Backend oriented tasks zone:frontend Frontend oriented tasks
Projects
None yet
Milestone
v1.6.0
Development

No branches or pull requests
4 participants
@msm-code @ITAYC0HEN @mickol34 @msm-cert