fariss

If no one is assigned to this issue. I'd like to draft a PR for it. Here is a potential candidate for get_sample_short_name_by_md5. ```python def get_sample_short_name_by_md5(md5) -> str: if md5...

Hi @williballenthin I noticed this issue has been inactive for some time. Could you please reassign it to me? I'd like to push a fix. Cheers.

Maybe we could introduce a new envrionement variable (e.g. `DISABLE_CAPA_CACHE=1`) instead of the CLI argument? @williballenthin's suggestion is also good. We could modify [`compute_cache_identifier`](https://github.com/mandiant/capa/blob/7da3ef89ca109e00f2ab8142d23f0837ad739bf6/capa/rules/cache.py#L29-L44) to compute the cache ID not...

Basically for source code, I was thinking about focusing on the `*.py` files. Here is an example: ```python import hashlib from pathlib import Path def compute_cache_identifier(rule_content: List[bytes]) -> CacheIdentifier: hash...

I find this command to be suitable to our need: ```ada git ls-files --deleted --modified --exclude-standard --full-name --deduplicate -v R removed.txt

Please note that the auto-cache generation approach will leave users will _a lot of_ stale cache files in the cache dir.

Hi @williballenthin, @mike-hunhoff, Could you please point me to the relevant IDA APIs to use for this scenario? I understand that the goal here is to avoid using `idc.GetDisasm(insn.ea)`. I...

I agree that `decode_insn` is the way to go here. However, the resulting object does not expose any APIs to actually assess if an operand corresponds to a segment register....

Hi @mike-hunhoff, I addressed these comments in 46f45fdffff6c8df64e5d9f87f41d0c1a91ef523. --- On a side note, while I initially started working on this, I noticed that user custom hooks set via `sys.excepthook =...

A potential fix for this issue in `jepeval.py` and `jeprunscript.py` could look something like this: ```python # Check if a custom exception hook has been set if sys.excepthook != sys.__excepthook__:...