{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":174335871,"defaultBranch":"capemon","name":"capemon","ownerLogin":"kevoreilly","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2019-03-07T11:59:28.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/22219888?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1725401419.0","currentOid":""},"activityList":{"items":[{"before":"0c850c89d807efafcca2f183475635bab2be0a21","after":"7018352ee217a66e582d8c86314f5b95af71fdeb","ref":"refs/heads/capemon","pushedAt":"2024-09-23T21:20:26.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Damn those debug lines","shortMessageHtmlLink":"Damn those debug lines"}},{"before":"5aa2981785178a6712a5c3b3e5a6afc18809061a","after":"0c850c89d807efafcca2f183475635bab2be0a21","ref":"refs/heads/capemon","pushedAt":"2024-09-23T21:16:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Remove debug output from previous commit","shortMessageHtmlLink":"Remove debug output from previous commit"}},{"before":"194702939689801ac757583e4ba49c7e5baf4543","after":"5aa2981785178a6712a5c3b3e5a6afc18809061a","ref":"refs/heads/capemon","pushedAt":"2024-09-23T10:20:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Fix size bug in DumpImageInCurrentProcess() (e.g. 1363935c511b511221c8943e3f1e3f06ace963703388c1d25f1f9224b4a276e5)","shortMessageHtmlLink":"Fix size bug in DumpImageInCurrentProcess() (e.g. 1363935c511b511221c…"}},{"before":"0eef3d39af7af0f40907ba3eb2e4234acc227141","after":"194702939689801ac757583e4ba49c7e5baf4543","ref":"refs/heads/capemon","pushedAt":"2024-09-18T09:41:17.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"VBScript hook improvements (thanks Jeremy at Proofpoint)","shortMessageHtmlLink":"VBScript hook improvements (thanks Jeremy at Proofpoint)"}},{"before":"08668ca287c82ab481779b1edb36c2d9b69ff49f","after":"0eef3d39af7af0f40907ba3eb2e4234acc227141","ref":"refs/heads/capemon","pushedAt":"2024-09-13T17:19:25.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"MessageBoxTimeoutW hook: improve logging of INFINITE timeout","shortMessageHtmlLink":"MessageBoxTimeoutW hook: improve logging of INFINITE timeout"}},{"before":"d419f7277856933ca6edea0b6f39ca2dc4e0012c","after":"08668ca287c82ab481779b1edb36c2d9b69ff49f","ref":"refs/heads/capemon","pushedAt":"2024-09-13T16:09:34.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add process bitness to behavior log 'environ'","shortMessageHtmlLink":"Add process bitness to behavior log 'environ'"}},{"before":"d93a5a1b1def8702d65c357e76c3c1d936c47047","after":"d419f7277856933ca6edea0b6f39ca2dc4e0012c","ref":"refs/heads/capemon","pushedAt":"2024-09-10T08:55:31.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Call disable_sleep_skip() on option force_sleepskip == 0 (e.g. Tbemida 6337ff4cf413f56cc6c9a8e67f24b8d7f94f620eae06ac9f0b113b5ba82ea176)","shortMessageHtmlLink":"Call disable_sleep_skip() on option force_sleepskip == 0 (e.g. Tbemid…"}},{"before":"b15eb8828ae8035a901a50ded397282a5c0e830e","after":"d93a5a1b1def8702d65c357e76c3c1d936c47047","ref":"refs/heads/capemon","pushedAt":"2024-09-06T11:20:39.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Set hit count to 1 for entrypoint breakpoints (e.g. bp0=ep)","shortMessageHtmlLink":"Set hit count to 1 for entrypoint breakpoints (e.g. bp0=ep)"}},{"before":null,"after":"8a3b15d9e3f14c15aaff5d019737ec2753e38fdd","ref":"refs/heads/dependabot/github_actions/dot-github/workflows/actions/download-artifact-4.1.7","pushedAt":"2024-09-03T22:10:19.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows\n\nBumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3 to 4.1.7.\n- [Release notes](https://github.com/actions/download-artifact/releases)\n- [Commits](https://github.com/actions/download-artifact/compare/v3...v4.1.7)\n\n---\nupdated-dependencies:\n- dependency-name: actions/download-artifact\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows"}},{"before":"0d2f174bb2497a029596ce644f418a46f31155ef","after":"b15eb8828ae8035a901a50ded397282a5c0e830e","ref":"refs/heads/capemon","pushedAt":"2024-09-03T10:45:10.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"VBScript hooks","shortMessageHtmlLink":"VBScript hooks"}},{"before":"9a7f65afa84f5ddde3168878696f0f6660d11625","after":"0d2f174bb2497a029596ce644f418a46f31155ef","ref":"refs/heads/capemon","pushedAt":"2024-08-30T13:06:57.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add HtaFile to CLSIDS handled in WMI/DCOM (FormBook - thanks Will Metcalf)","shortMessageHtmlLink":"Add HtaFile to CLSIDS handled in WMI/DCOM (FormBook - thanks Will Met…"}},{"before":"6979650482c45c82a597a7fcaff5232dca8ce9df","after":"9a7f65afa84f5ddde3168878696f0f6660d11625","ref":"refs/heads/capemon","pushedAt":"2024-08-28T12:07:21.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Slight improvement to previous commit: use global variable for efficiency","shortMessageHtmlLink":"Slight improvement to previous commit: use global variable for effici…"}},{"before":"6592859f959b22f25c5e4c8ec52f239b77ec435e","after":"6979650482c45c82a597a7fcaff5232dca8ce9df","ref":"refs/heads/capemon","pushedAt":"2024-08-28T10:36:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Fix Win7 issue with GetSystemTimePreciseAsFileTime not available","shortMessageHtmlLink":"Fix Win7 issue with GetSystemTimePreciseAsFileTime not available"}},{"before":"7252ed956a3980b8703ed2e045352f4613b25a93","after":"6592859f959b22f25c5e4c8ec52f239b77ec435e","ref":"refs/heads/capemon","pushedAt":"2024-08-22T11:45:00.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Improve handling of exceptions when number of parameters > 2","shortMessageHtmlLink":"Improve handling of exceptions when number of parameters &gt; 2"}},{"before":"a9b2949b0fc83e6b996ed9d1f355d6e71546a1b6","after":"7252ed956a3980b8703ed2e045352f4613b25a93","ref":"refs/heads/capemon","pushedAt":"2024-08-22T09:47:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add DumpRange() function","shortMessageHtmlLink":"Add DumpRange() function"}},{"before":"f9cdb867b6335bee5bdbff1669c4942ee49fb5c9","after":"a9b2949b0fc83e6b996ed9d1f355d6e71546a1b6","ref":"refs/heads/capemon","pushedAt":"2024-08-16T10:31:20.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"set_hooks(): enable hook range option","shortMessageHtmlLink":"set_hooks(): enable hook range option"}},{"before":"e8b382945b193fb2bdde2d2b562b6727852cf33d","after":"f9cdb867b6335bee5bdbff1669c4942ee49fb5c9","ref":"refs/heads/capemon","pushedAt":"2024-08-16T10:28:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Debugger shutdown: clear breakpoints only if set","shortMessageHtmlLink":"Debugger shutdown: clear breakpoints only if set"}},{"before":"93a7edad42e7d0e9c246e68183caa08f9d12a3b5","after":"e8b382945b193fb2bdde2d2b562b6727852cf33d","ref":"refs/heads/capemon","pushedAt":"2024-08-12T15:38:46.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add timeSetEvent hook","shortMessageHtmlLink":"Add timeSetEvent hook"}},{"before":"6233a2f0ffe6e0032c031fa821d95be01ef02eac","after":"93a7edad42e7d0e9c246e68183caa08f9d12a3b5","ref":"refs/heads/capemon","pushedAt":"2024-08-12T15:34:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"NtTestAlert hook: remove leftover test code","shortMessageHtmlLink":"NtTestAlert hook: remove leftover test code"}},{"before":"289ba8058db3fdddbed164e1599342c9b230bf0a","after":"6233a2f0ffe6e0032c031fa821d95be01ef02eac","ref":"refs/heads/capemon","pushedAt":"2024-08-12T15:32:32.000Z","pushType":"push","commitsCount":6,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add hooks for NtTestAlert, NtAlertResumeThread","shortMessageHtmlLink":"Add hooks for NtTestAlert, NtAlertResumeThread"}},{"before":"df1162bcbb4e30c689f579a396ab9382015419f8","after":"289ba8058db3fdddbed164e1599342c9b230bf0a","ref":"refs/heads/capemon","pushedAt":"2024-08-07T21:02:55.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Workaround for detonation issue where sample's ntdll copy is hooked by set_hooks_by_export_directory(): don't hook LdrGetDllHandle in ntdll copy (e.g. 5319be31d805f6f50d7a481561bfff9b2e6539ab361dd346237d928a7cb17cb3)","shortMessageHtmlLink":"Workaround for detonation issue where sample's ntdll copy is hooked b…"}},{"before":"3b993ebdd551b33fbc5d9d438b23b1a2d20ec77b","after":"df1162bcbb4e30c689f579a396ab9382015419f8","ref":"refs/heads/capemon","pushedAt":"2024-08-05T14:13:27.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Feature: add the ability to specify language code lang=X for region-aware malware","shortMessageHtmlLink":"Feature: add the ability to specify language code lang=X for region-a…"}},{"before":"a58f8ef8df6ff178a69fad3f786cda8cb48596f5","after":"3b993ebdd551b33fbc5d9d438b23b1a2d20ec77b","ref":"refs/heads/capemon","pushedAt":"2024-07-25T13:40:40.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"ProcessTrackedRegion: fix issue with not using new 'Caller' variable for api-based execution tracking","shortMessageHtmlLink":"ProcessTrackedRegion: fix issue with not using new 'Caller' variable …"}},{"before":"73edde4062d35ec1aedffe9e7f1ebe5e79ba116a","after":"a58f8ef8df6ff178a69fad3f786cda8cb48596f5","ref":"refs/heads/capemon","pushedAt":"2024-07-24T15:25:17.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Debugger: add ClearSoftwareBreakpoints() function","shortMessageHtmlLink":"Debugger: add ClearSoftwareBreakpoints() function"}},{"before":"b31b9f8b6460ca127b136337fa7eddbcdc59e4ab","after":"73edde4062d35ec1aedffe9e7f1ebe5e79ba116a","ref":"refs/heads/capemon","pushedAt":"2024-07-24T14:26:11.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Debugger: add ClearSoftwareBreakpointsInRange() function","shortMessageHtmlLink":"Debugger: add ClearSoftwareBreakpointsInRange() function"}},{"before":"eaeb1cafb40b05d0c23e1571b9d290240de187cb","after":"b31b9f8b6460ca127b136337fa7eddbcdc59e4ab","ref":"refs/heads/capemon","pushedAt":"2024-07-22T13:47:29.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Deprecate now-defunct caller-dumps","shortMessageHtmlLink":"Deprecate now-defunct caller-dumps"}},{"before":"add6d407100729cc2d63d430bc9057738f5cbb5e","after":"eaeb1cafb40b05d0c23e1571b9d290240de187cb","ref":"refs/heads/capemon","pushedAt":"2024-07-22T13:28:16.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Revert 85d6b38 due to some detonation failures","shortMessageHtmlLink":"Revert <a class=\"commit-link\" data-hovercard-type=\"commit\" data-hovercard-url=\"https://github.com/kevoreilly/capemon/commit/85d6b38461870ab4f7cfc8aef6b206e818d624b5/hovercard\" href=\"https://github.com/kevoreilly/capemon/commit/85d6b38461870ab4f7cfc8aef6b206e818d624b5\"><tt>85d6b38</tt></a> due to some detonation failures"}},{"before":"5d1ffb872d9c6d9100652dca9ab31f1b501d6740","after":"add6d407100729cc2d63d430bc9057738f5cbb5e","ref":"refs/heads/capemon","pushedAt":"2024-07-18T15:48:47.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Software (& syscall) breakpoint enhancements","shortMessageHtmlLink":"Software (&amp; syscall) breakpoint enhancements"}},{"before":"40b69998a3378862f987e12d5600204619540105","after":"5d1ffb872d9c6d9100652dca9ab31f1b501d6740","ref":"refs/heads/capemon","pushedAt":"2024-07-12T11:34:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Add handling for Internet Shortcut CLSID (.url) - thanks Will Metcalf","shortMessageHtmlLink":"Add handling for Internet Shortcut CLSID (.url) - thanks Will Metcalf"}},{"before":"9c94fd37fefdb892308542aba6d8a9018981adf1","after":"40b69998a3378862f987e12d5600204619540105","ref":"refs/heads/capemon","pushedAt":"2024-07-11T10:43:10.000Z","pushType":"push","commitsCount":5,"pusher":{"login":"kevoreilly","name":"Kevin O'Reilly","path":"/kevoreilly","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22219888?s=80&v=4"},"commit":{"message":"Unpacking & scanning enhancement: improve/extend entropy checks","shortMessageHtmlLink":"Unpacking &amp; scanning enhancement: improve/extend entropy checks"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yM1QyMToyMDoyNi4wMDAwMDBazwAAAAS-c4Wc","startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yM1QyMToyMDoyNi4wMDAwMDBazwAAAAS-c4Wc","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNy0xMVQxMDo0MzoxMC4wMDAwMDBazwAAAAR8tawf"}},"title":"Activity · kevoreilly/capemon"}