v0.12.0
Tool Improvements
- Add profiling to help with OOM/performance investigations by @egibs in #207
- Add support for Ruby Gem files by @egibs in #205
- Add version support by @egibs in #210
- Only calculate moves for shared objects by @jonjohnsonjr in #222
- Add -o flag to set output destination by @tstromberg in #220
- Reduce memory usage by 30% through use of pointers by @tstromberg in #211
- make archive extraction problems non-fatal by @tstromberg in #200
- Exclude skipped files from scanning percentages by @tstromberg in #201
Rule Improvements
- Refactor how we handle third_party rules by @tstromberg in #195
- Improve detection for Python setuptools backdoors by @tstromberg in #164
- Update YARAForge from 20240505 to 20240512 by @tstromberg in #225
- Add yara rule to detect bincapz binaries other than ourselves by @tstromberg in #198
- Disable poorly performing rules, including those with warnings by @tstromberg in #196
- Cleanup ThreatHunting Keywords support by @tstromberg in #199
- Add expected hashes to all MEDIUM+ rules, add YARA-CI by @tstromberg in #203
Developer Improvements
- simple output: properly handle skipped (data) files by @tstromberg in #221
New Contributors
- @jonjohnsonjr made their first contribution in #222
Full Changelog: v0.11.0...v0.12.0
Contributors
tstromberg, jonjohnsonjr, and egibs