Skip to content

Changelog

v0.4.2—Documentation

This version introduces a brand new documentation and some uniformization to help future mapper development.

Features

All:

  • A new documentation

File system parser:

  • Deactivate lief logging to reduce "noise".

Docker/CI:

  • Add template for future mapper.

Full Changelog: https://github.com/quarkslab/pyrrha/compare/v0.4.1...v0.4.2

v0.4.1

This version enforces the usage of a more efficient version of numbat and fixes some little bugs.

Features

All:

  • enforce numbat >= 0.2 to increase analysis speed

Fixes

File system parser:

  • check db existence with the appropriate numbat method
  • remove error-prone path modifications in symlink resolution

Full Changelog: https://github.com/quarkslab/pyrrha/compare/v0.4.0...v0.4.1

v0.4.0—Numbat version

This version introduces the usage of Numbat, our home-made Sourcetrail SDK fully Pythonic. Thanks to it, pyrrha is much easier to install.

Features

All:

  • Remove SourcetrailDB dependency to use numbat library

File system parser:

  • multiprocess binary parsing (lief export)

Docker/CI:

  • Adapt to numbat dependency. Remove all the useless installations.
  • Add package publication on pypi.

⚠ Important Changes

  • Package name was changes into pyrrha-mapper as the pyrrha package already exists on Pypi.

Fixes

  • Symlink resolution was partially broken due to not extensive checks on the path. It was trying to parse directory for example.

Associated Python package

This release contains a CI that automatically upload the package on Pypi. You can now install Pyrrha by doing

pip install pyrrha-mapper

Full Changelog: https://github.com/quarkslab/pyrrha/compare/v0.3.0...v0.4.0

v0.3.0—Hack.lu edition

Version release at the occasion of the talk Pyrrha: navigate easily into your system binaries given at the CTI-summit of Hack.lu.

Full Changelog: https://github.com/quarkslab/pyrrha/compare/v0.2.0...v0.3.0

Features

File system parser:

  • change JSON export structure

Documentation:

  • add example of diffing using JSON export
  • extend README to include new features

Docker/CI:

  • Change base Docker image to a lighter one (python to python-slim)
  • Add automatic build and upload of Docker image on Quarkslab's Github registry

Fixes

None

Associated Docker Image

Install from command line:

docker pull ghcr.io/quarkslab/pyrrha:v0.3.0
Use as base image in Dockerfile:
FROM ghcr.io/quarkslab/pyrrha:v0.3.0

v0.2.0

For more details, check associated package page.

Features

CLI:

  • setup logging and add debug option
  • add -h option to show the usage (equivalent of --help)

File system parser:

  • add PE support (⚠ it is case sensitive for all imports (functions and libraries)
  • add progress bar to show in real time percentage of wiles which have been indexed
  • unresolved imports (lib and/or symbols) point now on non-indexed symbols to keep information in the database
  • the mapping done by Pyrrha can be exported as a JSON file

Doc:

  • add options to have real time Docker output in the terminal (for logs and progress bars)

Fixes

  • Dockerfile was copying non existing directory, this action has been removed.

v0.1

First public release of Pyrrha