mr-tz

# Copyright (C) 2023 Mandiant, Inc. All Rights Reserved.
import sys
import struct
import logging
import argparse

import pefile

logger = logging.getLogger(__name__)

mr-tz

rule:
  meta:
    name: embed dependencies as resources using Fody/Costura
    namespace: executable/resource
    authors:
      - @mr-tz
    scope: file
  features:
    - or:
      - class: ProcessedByFody

mr-tz

import idc


def append_file_details(cmt):
    va0 = idc.next_head(0)

    # get number of free line
    n = 0
    while idc.get_extra_cmt(va0, idc.E_PREV + n):
        n += 1