[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"similar-ev-flow--quark-engine":3,"tool-ev-flow--quark-engine":65},[4,23,32,40,49,57],{"id":5,"name":6,"github_repo":7,"description_zh":8,"stars":9,"difficulty_score":10,"last_commit_at":11,"category_tags":12,"status":22},2268,"ML-For-Beginners","microsoft\u002FML-For-Beginners","ML-For-Beginners 是由微软推出的一套系统化机器学习入门课程,旨在帮助零基础用户轻松掌握经典机器学习知识。这套课程将学习路径规划为 12 周,包含 26 节精炼课程和 52 道配套测验,内容涵盖从基础概念到实际应用的完整流程,有效解决了初学者面对庞大知识体系时无从下手、缺乏结构化指导的痛点。\n\n无论是希望转型的开发者、需要补充算法背景的研究人员,还是对人工智能充满好奇的普通爱好者,都能从中受益。课程不仅提供了清晰的理论讲解,还强调动手实践,让用户在循序渐进中建立扎实的技能基础。其独特的亮点在于强大的多语言支持,通过自动化机制提供了包括简体中文在内的 50 多种语言版本,极大地降低了全球不同背景用户的学习门槛。此外,项目采用开源协作模式,社区活跃且内容持续更新,确保学习者能获取前沿且准确的技术资讯。如果你正寻找一条清晰、友好且专业的机器学习入门之路,ML-For-Beginners 将是理想的起点。",85092,2,"2026-04-10T11:13:16",[13,14,15,16,17,18,19,20,21],"图像","数据工具","视频","插件","Agent","其他","语言模型","开发框架","音频","ready",{"id":24,"name":25,"github_repo":26,"description_zh":27,"stars":28,"difficulty_score":29,"last_commit_at":30,"category_tags":31,"status":22},5784,"funNLP","fighting41love\u002FfunNLP","funNLP 是一个专为中文自然语言处理(NLP)打造的超级资源库,被誉为\"NLP 民工的乐园”。它并非单一的软件工具,而是一个汇集了海量开源项目、数据集、预训练模型和实用代码的综合性平台。\n\n面对中文 NLP 领域资源分散、入门门槛高以及特定场景数据匮乏的痛点,funNLP 提供了“一站式”解决方案。这里不仅涵盖了分词、命名实体识别、情感分析、文本摘要等基础任务的标准工具,还独特地收录了丰富的垂直领域资源,如法律、医疗、金融行业的专用词库与数据集,甚至包含古诗词生成、歌词创作等趣味应用。其核心亮点在于极高的全面性与实用性,从基础的字典词典到前沿的 BERT、GPT-2 模型代码,再到高质量的标注数据和竞赛方案,应有尽有。\n\n无论是刚刚踏入 NLP 领域的学生、需要快速验证想法的算法工程师,还是从事人工智能研究的学者,都能在这里找到急需的“武器弹药”。对于开发者而言,它能大幅减少寻找数据和复现模型的时间;对于研究者,它提供了丰富的基准测试资源和前沿技术参考。funNLP 以开放共享的精神,极大地降低了中文自然语言处理的开发与研究成本,是中文 AI 社区不可或缺的宝藏仓库。",79857,1,"2026-04-08T20:11:31",[19,14,18],{"id":33,"name":34,"github_repo":35,"description_zh":36,"stars":37,"difficulty_score":29,"last_commit_at":38,"category_tags":39,"status":22},5773,"cs-video-courses","Developer-Y\u002Fcs-video-courses","cs-video-courses 是一个精心整理的计算机科学视频课程清单,旨在为自学者提供系统化的学习路径。它汇集了全球知名高校(如加州大学伯克利分校、新南威尔士大学等)的完整课程录像,涵盖从编程基础、数据结构与算法,到操作系统、分布式系统、数据库等核心领域,并深入延伸至人工智能、机器学习、量子计算及区块链等前沿方向。\n\n面对网络上零散且质量参差不齐的教学资源,cs-video-courses 解决了学习者难以找到成体系、高难度大学级别课程的痛点。该项目严格筛选内容,仅收录真正的大学层级课程,排除了碎片化的简短教程或商业广告,确保用户能接触到严谨的学术内容。\n\n这份清单特别适合希望夯实计算机基础的开发者、需要补充特定领域知识的研究人员,以及渴望像在校生一样系统学习计算机科学的自学者。其独特的技术亮点在于分类极其详尽,不仅包含传统的软件工程与网络安全,还细分了生成式 AI、大语言模型、计算生物学等新兴学科,并直接链接至官方视频播放列表,让用户能一站式获取高质量的教育资源,免费享受世界顶尖大学的课堂体验。",79792,"2026-04-08T22:03:59",[18,13,14,20],{"id":41,"name":42,"github_repo":43,"description_zh":44,"stars":45,"difficulty_score":46,"last_commit_at":47,"category_tags":48,"status":22},3128,"ragflow","infiniflow\u002Fragflow","RAGFlow 是一款领先的开源检索增强生成(RAG)引擎,旨在为大语言模型构建更精准、可靠的上下文层。它巧妙地将前沿的 RAG 技术与智能体(Agent)能力相结合,不仅支持从各类文档中高效提取知识,还能让模型基于这些知识进行逻辑推理和任务执行。\n\n在大模型应用中,幻觉问题和知识滞后是常见痛点。RAGFlow 通过深度解析复杂文档结构(如表格、图表及混合排版),显著提升了信息检索的准确度,从而有效减少模型“胡编乱造”的现象,确保回答既有据可依又具备时效性。其内置的智能体机制更进一步,使系统不仅能回答问题,还能自主规划步骤解决复杂问题。\n\n这款工具特别适合开发者、企业技术团队以及 AI 研究人员使用。无论是希望快速搭建私有知识库问答系统,还是致力于探索大模型在垂直领域落地的创新者,都能从中受益。RAGFlow 提供了可视化的工作流编排界面和灵活的 API 接口,既降低了非算法背景用户的上手门槛,也满足了专业开发者对系统深度定制的需求。作为基于 Apache 2.0 协议开源的项目,它正成为连接通用大模型与行业专有知识之间的重要桥梁。",77062,3,"2026-04-04T04:44:48",[17,13,20,19,18],{"id":50,"name":51,"github_repo":52,"description_zh":53,"stars":54,"difficulty_score":46,"last_commit_at":55,"category_tags":56,"status":22},519,"PaddleOCR","PaddlePaddle\u002FPaddleOCR","PaddleOCR 是一款基于百度飞桨框架开发的高性能开源光学字符识别工具包。它的核心能力是将图片、PDF 等文档中的文字提取出来,转换成计算机可读取的结构化数据,让机器真正“看懂”图文内容。\n\n面对海量纸质或电子文档,PaddleOCR 解决了人工录入效率低、数字化成本高的问题。尤其在人工智能领域,它扮演着连接图像与大型语言模型(LLM)的桥梁角色,能将视觉信息直接转化为文本输入,助力智能问答、文档分析等应用场景落地。\n\nPaddleOCR 适合开发者、算法研究人员以及有文档自动化需求的普通用户。其技术优势十分明显:不仅支持全球 100 多种语言的识别,还能在 Windows、Linux、macOS 等多个系统上运行,并灵活适配 CPU、GPU、NPU 等各类硬件。作为一个轻量级且社区活跃的开源项目,PaddleOCR 既能满足快速集成的需求,也能支撑前沿的视觉语言研究,是处理文字识别任务的理想选择。",75812,"2026-04-17T10:36:11",[19,13,20,18],{"id":58,"name":59,"github_repo":60,"description_zh":61,"stars":62,"difficulty_score":29,"last_commit_at":63,"category_tags":64,"status":22},3215,"awesome-machine-learning","josephmisiti\u002Fawesome-machine-learning","awesome-machine-learning 是一份精心整理的机器学习资源清单,汇集了全球优秀的机器学习框架、库和软件工具。面对机器学习领域技术迭代快、资源分散且难以甄选的痛点,这份清单按编程语言(如 Python、C++、Go 等)和应用场景(如计算机视觉、自然语言处理、深度学习等)进行了系统化分类,帮助使用者快速定位高质量项目。\n\n它特别适合开发者、数据科学家及研究人员使用。无论是初学者寻找入门库,还是资深工程师对比不同语言的技术选型,都能从中获得极具价值的参考。此外,清单还延伸提供了免费书籍、在线课程、行业会议、技术博客及线下聚会等丰富资源,构建了从学习到实践的全链路支持体系。\n\n其独特亮点在于严格的维护标准:明确标记已停止维护或长期未更新的项目,确保推荐内容的时效性与可靠性。作为机器学习领域的“导航图”,awesome-machine-learning 以开源协作的方式持续更新,旨在降低技术探索门槛,让每一位从业者都能高效地站在巨人的肩膀上创新。",72149,"2026-04-03T21:50:24",[20,18],{"id":66,"github_repo":67,"name":68,"description_en":69,"description_zh":70,"ai_summary_zh":70,"readme_en":71,"readme_zh":72,"quickstart_zh":73,"use_case_zh":74,"hero_image_url":75,"owner_login":76,"owner_name":77,"owner_avatar_url":78,"owner_bio":79,"owner_company":69,"owner_location":69,"owner_email":69,"owner_twitter":80,"owner_website":69,"owner_url":81,"languages":82,"stars":103,"forks":104,"last_commit_at":105,"license":106,"difficulty_score":29,"env_os":107,"env_gpu":108,"env_ram":109,"env_deps":110,"category_tags":115,"github_topics":116,"view_count":10,"oss_zip_url":69,"oss_zip_packed_at":69,"status":22,"created_at":123,"updated_at":124,"faqs":125,"releases":151},8572,"ev-flow\u002Fquark-engine","quark-engine",null,"Quark Engine 是一款专为 Android 恶意软件分析设计的开源引擎,被誉为\"Android 恶意软件的讲故事者”。它主要解决了传统静态分析工具在面对代码混淆技术时难以识别恶意行为、以及人工分析效率低下的痛点。通过独特的“五层置信度”评分系统,Quark Engine 能够深入剖析 APK 文件,将分散的代码片段重组为具体的恶意行为故事(如隐私窃取、权限提升或远程控制),从而量化评估样本的威胁等级。\n\n这款工具特别适合网络安全研究人员、移动应用审计员以及需要处理大量样本的分析团队使用。其核心亮点在于强大的抗混淆能力,即使开发者对代码进行了复杂处理,它依然能精准捕捉底层的逻辑特征。此外,Quark Engine 拥有活跃的社区规则库,支持用户自定义检测规则,并已被 Black Hat、DEF CON 等国际顶级安全会议收录为演示项目,证明了其在业界的权威性与实用性。无论是用于家族化恶意软件的趋势研究,还是对可疑应用进行快速筛查,Quark Engine 都能提供清晰、可视化的分析报告,帮助用户高效洞察潜在风险。","\u003Cp align=\"center\">\n \u003Ca href=\"https:\u002F\u002Fwww.blackhat.com\u002Fasia-24\u002Farsenal\u002Fschedule\u002Findex.html#quark-script---dig-vulnerabilities-in-the-blackbox-37549\">\n \u003Cimg alt=\"Black Hat Arsenal\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FBlack%20Hat%20Arsenal-Asia%202024-blue\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.blackhat.com\u002Fasia-21\u002Farsenal\u002Fschedule\u002Findex.html#quark-engine-storyteller-of-android-malware-22458\">\n \u003Cimg alt=\"Black Hat Arsenal\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FBlack%20Hat%20Arsenal-Asia%202021-blue\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fconference.hitb.org\u002Fhitb-lockdown002\u002Fsessions\u002Fquark-engine-an-obfuscation-neglect-android-malware-scoring-system\u002F\">\n \u003Cimg alt=\"HITB\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FHITB-Lockdown%20002-red\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=XK-yqHPnsvc&ab_channel=DEFCONConference\">\n \u003Cimg alt=\"defcon\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FDEFCON%2028-BTV-blue\">\n \u003C\u002Fa>\u003Cbr>\n \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fquark-engine\u002Fquark-engine\u002Factions\u002Fworkflows\u002Fpytest.yml\">\n \u003Cimg alt=\"build status\" src=\"https:\u002F\u002Fgithub.com\u002Fquark-engine\u002Fquark-engine\u002Factions\u002Fworkflows\u002Fpytest.yml\u002Fbadge.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fcodecov.io\u002Fgh\u002Fquark-engine\u002Fquark-engine\">\n \u003Cimg alt=\"codecov\" src=\"https:\u002F\u002Fcodecov.io\u002Fgh\u002Fev-flow\u002Fquark-engine\u002Fgraph\u002Fbadge.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F18z\u002Fquark-rules\u002Fblob\u002Fmaster\u002FLICENSE\">\n \u003Cimg alt=\"license\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FLicense-GPLv3-blue.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.python.org\u002Fdownloads\u002Frelease\u002Fpython-31015\u002F\">\n \u003Cimg alt=\"python version\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fpython-3.10-blue.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fpypi.org\u002Fproject\u002Fquark-engine\u002F\">\n \u003Cimg alt=\"PyPi Download\" src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_7be40f709014.png\">\n \u003C\u002Fa>\u003Cbr>\n \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fquarkengine\">\n \u003Cimg alt=\"Twitter\" src=\"https:\u002F\u002Fimg.shields.io\u002Ftwitter\u002Ffollow\u002Fquarkengine?style=social\">\n \u003C\u002Fa>\u003Cbr>\n \u003Cimg src=\"https:\u002F\u002Fi.imgur.com\u002F8GwkWei.png\"\u002F>\n\u003C\u002Fp>\n\n## Malware Family Analysis Report Showcase\n\n\u003Ctable>\n\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_a2b2054f612c.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_3b630cecb2cb.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_fbf2feb783a7.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_c943f37d3896.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_01be5b9272b8.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_4d797af305bd.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_50af68e86d3d.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_696386ff84bc.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_be0332cab621.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n\u003C\u002Ftable>\n\n| Family | Summary | Signature Behaviors | Report |\n|-------------|----------------------------------------------------|--------------------------|--------|\n| DroidKungFu | Privilege escalation with C2 control. | 1. Gain unlimited access to a device.\u003Cbr>2. Install\u002FUninstall additional apps.\u003Cbr>3. Forward confidential data. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-droidkungfu) | \n| GoldDream | SMS\u002Fcall log exfiltration with remote C2 commands. | 1. Monitor SMS messages and phone calls.\u003Cbr>2. Upload SMS messages and phone calls to remote servers. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-golddream) |\n| SpyNote | Credential theft and device surveillance via RAT. | 1. Take screenshots.\u003Cbr>2. Simulate user gestures.\u003Cbr>3. Log user input.\u003Cbr>4. Communicate with C2 servers. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-spynote) |\n| DawDropper | Dropper that installs banking trojans for financial theft. | 1. Download APKs from remote servers.\u003Cbr>2. Install additional APKs. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-dawdropper) |\n| SLocker | Android ransomware locking\u002Fencrypting devices. | 1. Lock the device with an overlay screen. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-slocker) |\n| PhantomCard | NFC relay–based financial fraud. | 1. Communicate with C2 servers.\u003Cbr>2. Read the payment data of NFC cards.\u003Cbr>3. Captures PINs of NFC cards through deceptive screens. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-phantomcard) |\n| ToxicPanda | Banking trojan enabling on-device fraud. | 1. Abuse Accessibility.\u003Cbr>2. Remote device control.\u003Cbr>3. Intercept OTP. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-toxicpanda) |\n| Hydra | Banking trojan using overlay attacks. | 1. Overlay credential theft.\u003Cbr>2. Accessibility abuse.\u003Cbr>3. Steal OTP\u002Fcookies. | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-hydra) |\n| SharkBot | Banking trojan targeting financial credentials and transactions. | 1. Abuse Accessibility services.\u003Cbr>2. Perform overlay attacks to steal credentials.\u003Cbr>3. Intercept SMS messages (OTP). | [View](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-sharkbot) |\n\n## Quick Start\n\n### Step 1. Install via PyPi\nInstall the latest version of Quark Engine:\n```bash\n$ pip3 install -U quark-engine\n```\n\n### Step 2. Download Latest Rules\nFetch the latest rule database:\n```bash\n$ freshquark\n```\n\n### Step 3. Run Summary Report\nAnalyze an APK with the downloaded rules and generate a summary report:\n```bash\n$ quark -a \u003Capk_file> -s\n```\n### Step 4. View Results\nExample output:\n\u003Cimg width=\"1280\" height=\"461\" alt=\"Screenshot-2025-11-25-22-36-54\" src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_b33bab3b4dc2.png\" \u002F>\n\n\n## Acknowledgments\n\n### The Honeynet Project\n\n\u003Ca href=\"https:\u002F\u002Fwww.honeynet.org\"> \u003Cimg style=\"border: 0.2px solid black\" width=115 height=150 src=\"https:\u002F\u002Fi.imgur.com\u002Fznu7cMJ.png\" alt=\"Honeynet.org logo\"> \u003C\u002Fa>\n\n### Google Summer Of Code\n\nQuark-Engine has been participating in the GSoC under the Honeynet Project!\n\n* 2021:\n * [YuShiang Dang](https:\u002F\u002Ftwitter.com\u002FYushianhD): [New Rule Generation Technique & Make Quark Everywhere Among Security Open Source Projects](https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fref\u002Fblob\u002Fmain\u002FGSoC-2021-YuShiangDang.md)\n * [Sheng-Feng Lu](https:\u002F\u002Ftwitter.com\u002Fhaeter525): [Replace the core library of Quark-Engine](https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fref\u002Fblob\u002Fmain\u002FGSoC-2021-ShengFengLu.md)\n\nStay tuned for the upcoming GSoC! Join the [Honeynet Slack chat](https:\u002F\u002Fgsoc-slack.honeynet.org\u002F) for more info.\n\n## Core Values of Quark Engine Team\n\n* We love **battle fields**. We embrace **uncertainties**. We challenge **impossibles**. We **rethink** everything. We change the way people think. And the most important of all, we benefit ourselves by benefit others **first**.\n","\u003Cp align=\"center\">\n \u003Ca href=\"https:\u002F\u002Fwww.blackhat.com\u002Fasia-24\u002Farsenal\u002Fschedule\u002Findex.html#quark-script---dig-vulnerabilities-in-the-blackbox-37549\">\n \u003Cimg alt=\"Black Hat Arsenal\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FBlack%20Hat%20Arsenal-Asia%202024-blue\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.blackhat.com\u002Fasia-21\u002Farsenal\u002Fschedule\u002Findex.html#quark-engine-storyteller-of-android-malware-22458\">\n \u003Cimg alt=\"Black Hat Arsenal\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FBlack%20Hat%20Arsenal-Asia%202021-blue\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fconference.hitb.org\u002Fhitb-lockdown002\u002Fsessions\u002Fquark-engine-an-obfuscation-neglect-android-malware-scoring-system\u002F\">\n \u003Cimg alt=\"HITB\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FHITB-Lockdown%20002-red\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.youtube.com\u002Fwatch?v=XK-yqHPnsvc&ab_channel=DEFCONConference\">\n \u003Cimg alt=\"defcon\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FDEFCON%2028-BTV-blue\">\n \u003C\u002Fa>\u003Cbr>\n \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fquark-engine\u002Fquark-engine\u002Factions\u002Fworkflows\u002Fpytest.yml\">\n \u003Cimg alt=\"build status\" src=\"https:\u002F\u002Fgithub.com\u002Fquark-engine\u002Fquark-engine\u002Factions\u002Fworkflows\u002Fpytest.yml\u002Fbadge.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fcodecov.io\u002Fgh\u002Fquark-engine\u002Fquark-engine\">\n \u003Cimg alt=\"codecov\" src=\"https:\u002F\u002Fcodecov.io\u002Fgh\u002Fev-flow\u002Fquark-engine\u002Fgraph\u002Fbadge.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fgithub.com\u002F18z\u002Fquark-rules\u002Fblob\u002Fmaster\u002FLICENSE\">\n \u003Cimg alt=\"license\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002FLicense-GPLv3-blue.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fwww.python.org\u002Fdownloads\u002Frelease\u002Fpython-31015\u002F\">\n \u003Cimg alt=\"python version\" src=\"https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fpython-3.10-blue.svg\">\n \u003C\u002Fa>\n \u003Ca href=\"https:\u002F\u002Fpypi.org\u002Fproject\u002Fquark-engine\u002F\">\n \u003Cimg alt=\"PyPi Download\" src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_7be40f709014.png\">\n \u003C\u002Fa>\u003Cbr>\n \u003Ca href=\"https:\u002F\u002Ftwitter.com\u002Fquarkengine\">\n \u003Cimg alt=\"Twitter\" src=\"https:\u002F\u002Fimg.shields.io\u002Ftwitter\u002Ffollow\u002Fquarkengine?style=social\">\n \u003C\u002Fa>\u003Cbr>\n \u003Cimg src=\"https:\u002F\u002Fi.imgur.com\u002F8GwkWei.png\"\u002F>\n\u003C\u002Fp>\n\n## 恶意软件家族分析报告展示\n\n\u003Ctable>\n\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_a2b2054f612c.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_3b630cecb2cb.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_fbf2feb783a7.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_c943f37d3896.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_01be5b9272b8.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_4d797af305bd.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n \u003Ctr>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_50af68e86d3d.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_696386ff84bc.png\" width=\"310\">\u003C\u002Ftd>\n \u003Ctd>\u003Cimg src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_be0332cab621.png\" width=\"310\">\u003C\u002Ftd>\n \u003C\u002Ftr>\n\u003C\u002Ftable>\n\n| 家族 | 概述 | 特征行为 | 报告 |\n|-------------|----------------------------------------------------|--------------------------|--------|\n| DroidKungFu | 具有C2控制的权限提升。 | 1. 获得设备的无限访问权限。\u003Cbr>2. 安装\u002F卸载额外的应用程序。\u003Cbr>3. 转发机密数据。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-droidkungfu) | \n| GoldDream | 带有远程C2命令的短信\u002F通话记录窃取。 | 1. 监控短信和电话呼叫。\u003Cbr>2. 将短信和电话呼叫上传到远程服务器。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-golddream) |\n| SpyNote | 通过RAT进行凭据窃取和设备监控。 | 1. 截取屏幕截图。\u003Cbr>2. 模拟用户手势。\u003Cbr>3. 记录用户输入。\u003Cbr>4. 与C2服务器通信。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-spynote) |\n| DawDropper | 安装银行木马以进行金融盗窃的投放器。 | 1. 从远程服务器下载APK文件。\u003Cbr>2. 安装额外的APK文件。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-dawdropper) |\n| SLocker | 锁定\u002F加密设备的Android勒索软件。 | 1. 使用覆盖屏幕锁定设备。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-slocker) |\n| PhantomCard | 基于NFC中继的金融欺诈。 | 1. 与C2服务器通信。\u003Cbr>2. 读取NFC卡的支付数据。\u003Cbr>3. 通过欺骗性界面捕获NFC卡的PIN码。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-phantomcard) |\n| ToxicPanda | 允许在设备上进行欺诈的银行木马。 | 1. 滥用无障碍服务。\u003Cbr>2. 远程控制设备。\u003Cbr>3. 截取OTP。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-toxicpanda) |\n| Hydra | 使用覆盖攻击的银行木马。 | 1. 覆盖式凭据窃取。\u003Cbr>2. 滥用无障碍服务。\u003Cbr>3. 窃取OTP\u002Fcookies。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-hydra) |\n| SharkBot | 针对金融凭据和交易的银行木马。 | 1. 滥用无障碍服务。\u003Cbr>2. 进行覆盖攻击以窃取凭据。\u003Cbr>3. 截取短信(OTP)。 | [查看](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_rules.html#new-quark-rules-for-sharkbot) |\n\n## 快速入门\n\n### 第一步:通过PyPI安装\n安装最新版本的Quark Engine:\n```bash\n$ pip3 install -U quark-engine\n```\n\n### 第二步:下载最新规则\n获取最新的规则数据库:\n```bash\n$ freshquark\n```\n\n### 第三步:运行摘要报告\n使用已下载的规则分析APK并生成摘要报告:\n```bash\n$ quark -a \u003Capk_file> -s\n```\n### 第四步:查看结果\n示例输出:\n\u003Cimg width=\"1280\" height=\"461\" alt=\"Screenshot-2025-11-25-22-36-54\" src=\"https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_readme_b33bab3b4dc2.png\" \u002F>\n\n\n## 致谢\n\n### Honeynet项目\n\n\u003Ca href=\"https:\u002F\u002Fwww.honeynet.org\"> \u003Cimg style=\"border: 0.2px solid black\" width=115 height=150 src=\"https:\u002F\u002Fi.imgur.com\u002Fznu7cMJ.png\" alt=\"Honeynet.org logo\"> \u003C\u002Fa>\n\n### 谷歌编程之夏\n\nQuark-Engine 一直在 Honeynet 项目下参与谷歌编程之夏活动!\n\n* 2021年:\n * [YuShiang Dang](https:\u002F\u002Ftwitter.com\u002FYushianhD):[新的规则生成技术 & 让 Quark 普及于安全开源项目之中](https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fref\u002Fblob\u002Fmain\u002FGSoC-2021-YuShiangDang.md)\n * [Sheng-Feng Lu](https:\u002F\u002Ftwitter.com\u002Fhaeter525):[替换 Quark-Engine 的核心库](https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fref\u002Fblob\u002Fmain\u002FGSoC-2021-ShengFengLu.md)\n\n敬请期待即将到来的谷歌编程之夏!加入 [Honeynet Slack 聊天室](https:\u002F\u002Fgsoc-slack.honeynet.org\u002F) 获取更多信息。\n\n## Quark Engine 团队的核心价值观\n\n* 我们热爱**战场**。我们拥抱**不确定性**。我们挑战**不可能**。我们对一切进行**重新思考**。我们改变人们的思维方式。而最重要的是,我们通过**首先**帮助他人来成就自己。","# Quark Engine 快速上手指南\n\nQuark Engine 是一款强大的开源 Android 恶意软件分析工具,能够基于行为特征对 APK 文件进行深度扫描和评分。\n\n## 环境准备\n\n* **操作系统**:支持 Linux、macOS 及 Windows(建议在使用 WSL 的 Linux 环境下运行以获得最佳兼容性)。\n* **Python 版本**:需要安装 **Python 3.10** 或更高版本。\n* **前置依赖**:确保系统已安装 `pip3` 包管理工具。\n\n> **国内加速建议**:为避免网络延迟导致下载失败,建议使用国内镜像源进行安装。\n\n## 安装步骤\n\n### 1. 安装 Quark Engine\n使用 pip 从国内镜像源安装最新版:\n\n```bash\n$ pip3 install -U quark-engine -i https:\u002F\u002Fpypi.tuna.tsinghua.edu.cn\u002Fsimple\n```\n\n### 2. 获取最新规则库\n安装完成后,运行 `freshquark` 命令下载最新的恶意软件行为规则数据库:\n\n```bash\n$ freshquark\n```\n\n## 基本使用\n\n完成上述步骤后,即可对指定的 APK 文件进行分析并生成摘要报告。\n\n**命令格式:**\n```bash\n$ quark -a \u003Capk_file> -s\n```\n\n**使用示例:**\n假设当前目录下有一个名为 `sample.apk` 的文件,执行以下命令:\n\n```bash\n$ quark -a sample.apk -s\n```\n\n**结果说明:**\n执行成功后,终端将输出分析报告,包含恶意行为置信度评分、触发的规则详情以及潜在的风险等级(如 DroidKungFu, SpyNote 等家族特征)。","某安全团队在应对突发的大规模 Android 恶意软件样本分析任务时,急需从数千个未知 APK 中快速识别出特定的恶意家族行为。\n\n### 没有 quark-engine 时\n- 分析师只能依赖人工反编译和静态代码审计,面对混淆严重的代码难以理清逻辑,单个样本分析耗时数小时。\n- 缺乏统一的行为评分标准,不同分析师对同一风险的判断主观性强,导致漏报或误报率居高不下。\n- 难以批量自动化处理海量样本,无法快速提取如“短信窃取”或“权限提升”等关键攻击特征,响应速度严重滞后。\n- 对于跨家族的共性攻击模式(如 C2 通信机制),缺乏可视化的关联分析手段,难以形成系统性的威胁情报报告。\n\n### 使用 quark-engine 后\n- 利用预定义的规则集自动扫描黑盒 APK,即使代码经过混淆也能精准匹配底层行为模式,将单样本分析时间压缩至分钟级。\n- 基于量化评分系统客观评估恶意程度,自动生成包含具体行为证据(如监控短信、上传通话记录)的详细报告,消除人为偏差。\n- 支持大规模批量检测,迅速从成千上万个文件中筛选出高危样本,并直接定位到具体的恶意 API 调用链。\n- 通过内置的可视化报表功能,直观展示不同恶意家族(如 DroidKungFu、GoldDream)的攻击特征,辅助团队快速产出高质量威胁情报。\n\nquark-engine 将原本繁琐且依赖专家经验的逆向分析工作,转化为高效、标准化且可量量的自动化流程,极大提升了移动安全防御的响应效率。","https:\u002F\u002Foss.gittoolsai.com\u002Fimages\u002Fev-flow_quark-engine_a2b2054f.png","ev-flow","Even Flow Foundation","https:\u002F\u002Foss.gittoolsai.com\u002Favatars\u002Fev-flow_f1fc86ca.png","","quarkengine","https:\u002F\u002Fgithub.com\u002Fev-flow",[83,87,91,95,99],{"name":84,"color":85,"percentage":86},"Python","#3572A5",90.3,{"name":88,"color":89,"percentage":90},"HTML","#e34c26",8.2,{"name":92,"color":93,"percentage":94},"JavaScript","#f1e05a",0.8,{"name":96,"color":97,"percentage":98},"CSS","#663399",0.7,{"name":100,"color":101,"percentage":102},"Dockerfile","#384d54",0.1,1665,202,"2026-04-16T23:13:43","GPL-3.0","未说明 (通常支持 Linux, macOS, Windows)","未说明 (无需 GPU,基于静态分析)","未说明",{"notes":111,"python":112,"dependencies":113},"该工具主要用于 Android 恶意软件静态分析。安装后需运行 'freshquark' 命令下载最新的规则数据库方可使用。未提及特殊的 GPU 或大内存需求,推测普通开发环境即可运行。","3.10",[68,114],"freshquark",[18],[117,118,119,120,121,122],"defcon","android","blackhat","blackbox","malware-analysis","malware-detection","2026-03-27T02:49:30.150509","2026-04-18T02:22:11.141043",[126,131,136,141,146],{"id":127,"question_zh":128,"answer_zh":129,"source_url":130},38403,"在 macOS 上安装 Quark Engine 时遇到依赖项错误(如 androguard 未找到)怎么办?","该问题通常与 pipenv 和 zsh shell 的兼容性有关。您可以尝试直接运行虚拟环境中的可执行文件来验证:\n`~\u002F.local\u002Fshare\u002Fvirtualenvs\u002Fquark-engine-\u003C随机字符>\u002Fbin\u002Fquark -h`\n如果上述命令能正常运行,说明是 shell 配置问题。建议参考 pipenv 的相关议题(如 pypa\u002Fpipenv#1058)寻找解决方案。此外,目前在 macOS Big Sur (11.6.8) 配合 Python 3.8\u002F3.9 环境下构建和分析功能均正常。","https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fquark-engine\u002Fissues\u002F83",{"id":132,"question_zh":133,"answer_zh":134,"source_url":135},38404,"如何从 APK 文件中提取 URL 和 IP 地址?","该功能已在 v21.2.2 及更高版本中内置。早期用户曾通过正则表达式手动提取,但官方已优化了正则逻辑以减少误报(例如将 IPv4 匹配中的 `\\d` 改为更严格的 `[0-5]` 范围)。建议直接使用最新版本的 Quark Engine,无需手动编写提取脚本,底层逻辑已在 `quark\u002Futils\u002Fregex.py` 中修复并集成。","https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fquark-engine\u002Fissues\u002F85",{"id":137,"question_zh":138,"answer_zh":139,"source_url":140},38405,"为什么 Quark 的分析评分总是显示为 37 分,是否没有乘以权重?","这是一个常见的疑问,官方已确认该逻辑无误并将此问题补充到了文档中(PR #241)。评分计算机制符合预期,并非 Bug。如果您需要自定义检测规则以改变评分逻辑,可以使用官方发布的规则生成工具:https:\u002F\u002Fgithub.com\u002Fquark-engine\u002Fquark-rule-generate 进行测试和创作。","https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fquark-engine\u002Fissues\u002F78",{"id":142,"question_zh":143,"answer_zh":144,"source_url":145},38406,"如何将 Click 库作为可选依赖安装,以避免与其他库(如 Celery)的版本冲突?","在最新版本(v21.7.2)中,开发团队已经软化了 `click` 包的依赖限制,以解决兼容性问题。如果您仍遇到因 PyPi 优先使用 wheel 文件而非源码分发导致的版本强制问题,建议直接从 GitHub 仓库克隆源码进行安装,或者等待团队完全移除对 click 特定版本的硬性要求。目前主要解决方案是升级到最新版或使用源码安装。","https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fquark-engine\u002Fissues\u002F202",{"id":147,"question_zh":148,"answer_zh":149,"source_url":150},38407,"Quark 能否检测继承自 Android 原生类的自定义类中调用的 API?","早期版本的 Quark 主要考虑原生 Android API,未充分处理类继承情况,导致无法识别子类(如自定义的 AccessibilityService)中调用的方法。维护者已确认该问题存在,并计划改进策略以支持类继承链的分析。如果您遇到此类漏报,建议关注后续版本更新或参与社区讨论以获取最新的修复进展。","https:\u002F\u002Fgithub.com\u002Fev-flow\u002Fquark-engine\u002Fissues\u002F158",[152,157,162,167,172,177,182,187,192,197,202,207,212,217,222,227,232,237,242,247],{"id":153,"version":154,"summary_zh":155,"released_at":156},306597,"v26.3.1","性能提升\n\n- 记录寄存器状态而非完整系统状态,以降低内存占用。(#845)\n\n文档增强\n\n- 添加针对 ToxicPanda 恶意软件家族的分析报告。(#863)\n\n新功能\n\n- 为基于 androguard 的解析添加安全的 DEX 校验和自动修复流程。(#866)","2026-03-07T02:44:16",{"id":158,"version":159,"summary_zh":160,"released_at":161},306598,"v26.2.1","依赖项更新\n\n- 将 requests 的最大版本号提升至 2.32.3。(#856)\n\n文档增强\n\n- 重构文档。(#857)\n\n新功能\n\n- 增加对半损坏 Android APK 文件的处理支持 (#859)","2026-02-06T10:16:31",{"id":163,"version":164,"summary_zh":165,"released_at":166},306599,"v26.1.1"," * 规则增强\r\n\r\n - 为 PhantomCard 恶意软件家族新增 5 条规则。(#843)\r\n\r\n * 文档增强\r\n\r\n - 添加 PhantomCard 恶意软件家族的分析报告。(#843)\r\n - 优化 Quark Script 关于 CWE-749 和 CWE-927 的文档。(#842 和 #844)","2026-01-07T02:48:32",{"id":168,"version":169,"summary_zh":170,"released_at":171},306600,"v25.12.1","规则增强\n\n- 为SLocker恶意软件家族新增1条规则(#832)\n\n文档增强\n\n- 新增SLocker恶意软件家族的分析报告(#832)\n- 优化Quark Script关于CWE-780和CWE-940的文档(#829、#831)","2025-12-05T14:25:52",{"id":173,"version":174,"summary_zh":175,"released_at":176},306601,"v25.11.1","规则增强\n\n- 为DawDropper恶意软件家族新增3条规则(#822)\n\n文档增强\n\n- 优化Quark Script的CWE-601和CWE-926相关文档。(#821、#823)\n- 新增DawDropper恶意软件家族的分析报告。(#822)","2025-11-06T04:12:28",{"id":178,"version":179,"summary_zh":180,"released_at":181},306602,"v25.9.1"," * 文档优化\n\n - 新增GoldDream恶意软件家族的分析报告。(#780)\n - 更新GitHub发布流程文档。(#791)\n - 针对CWE-256优化Quark Script文档。(#804)\n\n * 规则增强\n\n - 为GoldDream恶意软件家族新增4条规则(#780)\n\n * 新功能\n\n - 新增用于检测CWE-359的Quark Script API及示例。(#802、#803)","2025-09-03T11:22:57",{"id":183,"version":184,"summary_zh":185,"released_at":186},306603,"v25.8.1","新功能\n\n- 添加 Quark Script API 以检测 CWE-297。(#777)\n- 添加 Quark Script 演示,用于检测 CWE-329、CWE-297、CWE-1204 和 CWE-24。(#775、#778、#779 和 #781)","2025-08-06T13:07:15",{"id":188,"version":189,"summary_zh":190,"released_at":191},306604,"v25.7.1","规则增强\n\n- 为 DroidKungFu 恶意软件家族新增 22 条规则 (#762)\n\n文档增强\n\n- 针对 CWE-502 和 CWE-532 优化 Quark Script 文档。(#769 和 #764)","2025-07-03T05:54:25",{"id":193,"version":194,"summary_zh":195,"released_at":196},306605,"v25.6.1","文档增强\n - 优化 Quark Script 文档,以符合 CWE-328、CWE-338 和 CWE-489 标准。(#754、#756 和 #757)","2025-06-04T09:07:12",{"id":198,"version":199,"summary_zh":200,"released_at":201},306606,"v25.5.1","文档增强\n\n- 优化 Quark Script 文档,以解决 CWE-117、CWE-295、CWE-319 和 CWE-327 漏洞。(#745、#747、#748 和 #750)","2025-05-08T02:40:49",{"id":203,"version":204,"summary_zh":205,"released_at":206},306607,"v25.4.1","Document Enhancement\r\n \r\n - Optimize the Quark Script documents for CWE-79, CWE-88, and CWE-89. (#738, #740, and #742)\r\n \r\nPerformance Improvement\r\n\r\n - Cache all_methods API results to optimize the performance of the Shuriken-based library. (#741)","2025-04-03T12:35:40",{"id":208,"version":209,"summary_zh":210,"released_at":211},306608,"v25.3.1","**Document Enhancement**\r\n\r\n- Optimize the Quark Script documents for CWE-23, CWE-73, and CWE-78. (#733, #735, and #734)","2025-03-05T11:21:07",{"id":213,"version":214,"summary_zh":215,"released_at":216},306609,"v25.2.1","**New Feature**\r\n\r\n* Introduce a new optional core library based on [Shuriken-Analyzer](https:\u002F\u002Fgithub.com\u002FShuriken-Group\u002FShuriken-Analyzer). (#697) \r\n\r\nTo enable this core library, install Shuriken-Analyzer and run Quark with option `--core-library shuriken`.\r\n\r\n**Document Enhancement**\r\n\r\n* Optimize the CWE-20 and CWE-22 documents. (#727, #730)","2025-02-06T06:22:18",{"id":218,"version":219,"summary_zh":220,"released_at":221},306610,"v25.1.1","**Document Enhancement**\r\n\r\n* Optimize the Quark Script documents for CWE-94, CWE-798, and CWE-921. (#724, #722, and #723)","2025-01-01T05:18:37",{"id":223,"version":224,"summary_zh":225,"released_at":226},306611,"v24.12.1","**Document Enhancement**\r\n\r\n* Optimize the Quark Script documents for CWE-295, CWE-312, and CWE-940. (#716, #717, and #711)\r\n\r\n\r\n**Dependency Update**\r\n\r\n* Update the minimum required Python version to 3.10. (#715)\r\n\r\n**Bug Fix**\r\n\r\n* Fix a ModuleNotFoundError during the installation via PyPI. (#720)","2024-12-03T05:22:03",{"id":228,"version":229,"summary_zh":230,"released_at":231},306612,"v24.11.2","**Bug Fix**\r\n\r\n* Change syntax to solve syntax warning in Python 3.12. (#712)\r\n\r\n**Dependency Update**\r\n\r\n* Replace deprecated package in Python 3.12. (#712)\r\n","2024-11-15T07:53:45",{"id":233,"version":234,"summary_zh":235,"released_at":236},306613,"v24.11.1","**Document Enhancement**\r\n\r\n* Optimize the CWE-338, CWE-489 and CWE-532 documents. (#700, #702 and #704)","2024-11-06T23:35:03",{"id":238,"version":239,"summary_zh":240,"released_at":241},306614,"v24.10.1","**New Feature**\r\n\r\n* Add a Quark Agent showcase that can enhance Quark Reports. (#685)\r\n\r\n**Document Enhancement**\r\n\r\n* Optimize the CWE-117 document. (#691)\r\n\r\n**Requirement Update**\r\n\r\n* Update the minimum required Python version to 3.9. (#680)\r\n\r\n**Bug Fixes**\r\n\r\n* Fix coding style issues in Quark Agent web interface. (#683)\r\n* Fix incorrect outputs of the CWE-117, 798, and 921 showcases. (#689)","2024-10-02T15:24:37",{"id":243,"version":244,"summary_zh":245,"released_at":246},306615,"v24.9.1","**New Feature**\r\n\r\n* Introduce Quark Agent and its web interface, enabling users to perform analyses using natural language. (#670, #678)\r\n\r\n**Document Enhancement**\r\n\r\n* Optimize the CWE-88 document. (#677)","2024-09-04T13:36:59",{"id":248,"version":249,"summary_zh":250,"released_at":251},306616,"v24.8.1","**New Feature**\r\n\r\n* Introduce the new AI member, Quark Script Agent, along with two showcases. Check [here](https:\u002F\u002Fquark-engine.readthedocs.io\u002Fen\u002Flatest\u002Fquark_script_agent.html) for the details.(#664, #667)\r\n\r\n**Document Enhancement**\r\n\r\n* Optimize the CWE-601 and CWE-925 documents. (#663, #662)\r\n\r\n**Bug Fix**\r\n\r\n* Make the getParamValue API more accurate on parameter extraction. (#666)","2024-08-07T03:13:20"]