| Name | Type | Description | Notes |
|---|---|---|---|
| id | Integer | Unique identifier of the function | |
| address | Integer | Address of the function in the binary | |
| summary | String | Summary of the function's behaviour | |
| score | BigDecimal | Score indicating the function's relevance | |
| capabilities | List<CapabilitiesEnum> | List of capabilities exhibited by the function |
| Name | Value |
|---|---|
| PACKING_AND_OBFUSCATION | "packing_and_obfuscation" |
| DEFENSE_EVASION | "defense_evasion" |
| PRIVILEGE_ESCALATION | "privilege_escalation" |
| PERSISTENCE_MECHANISMS | "persistence_mechanisms" |
| DISCOVERY_AND_RECONNAISSANCE | "discovery_and_reconnaissance" |
| CREDENTIAL_AND_DATA_COLLECTION | "credential_and_data_collection" |
| COMMUNICATION_AND_C2 | "communication_and_c2" |
| CRYPTOGRAPHIC_OPERATIONS | "cryptographic_operations" |
| PROCESS_AND_MEMORY_MANIPULATION | "process_and_memory_manipulation" |
| PROCESS_AND_COMMAND_EXECUTION | "process_and_command_execution" |
| FILE_ACTIVITY | "file_activity" |