This repository has been archived by the owner on Apr 24, 2020. It is now read-only.
Specify alternate similarity methods #8
Labels
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Currently, konig only uses ssdeep over the entirety of the file. If we restrict ourselves to certain filetypes (e.g. PE32), we can make use of the structure of those types and instead perform fuzzy hashing on, say, key sections within the files (.text, .rdata, etc).
The text was updated successfully, but these errors were encountered: