Skip to content

pedrohegem/MalwareAnalysisTools

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 

Repository files navigation

MalwareAnalysisTools

A collection of tools to analyze malware.

inventory.sh

Versatile and efficient tool designed to streamline the organization and analysis of malware samples. This script automates the process of creating an inventory for each malware sample, capturing essential information such as file names, hashes, and additional metadata. Features:

  1. Input: It takes the path to the malware sample.
  2. Hash calculation: Generates MD5, SHA-1, SHA-256, and SSDeep hashes for the provided malware sample.
  3. Structured inventory: Organizes information in a clear and structured manner, creating a 'names.txt' file with the base name of the malware sample and storing hashes in separate files.
  4. README.md creation: Creates a README.md file for additional details and instructions, prompting users to add relevant information before placing the folder in the appropriate directory.
  5. Rules directory: Creates a 'rules' directory to accommodate any rule files associated with the malware sample.
  6. Zip archives: Archives the original malware sample with a password (infected) and saves it in the 'samples' directory. This ensures secure storage and easy retrieval while preventing accidental execution.
  7. Cleanup: Removes the original malware file, leaving behind a neatly organized directory structure containing all relevant information.

Usage: ./inventory.sh path/to/malware_sample

About

A collection of tools to analyze malware.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages