RansomCoinPublic
RansomCoinPublic copied to clipboard
A DFIR tool to extract cryptocoin addresses and other indicators of compromise from binaries.
small correction to line 221 by removing "or venv"
Email strings across cells and tables inside pdfs can be lost, because they are across multiple lines. Investigate if this is caused by pdftotext, or our code. Can it be...
We have a report of an address that classifies as both a LTC and a BTC address. The address cannot be shared, but we can investigate what range of addresses...
Mount as read only check files are non executable touch Ransomware.csv go!
https://www.honeynet.org/taxonomy/term/218
Use a keys.py file in a similar style to other MISP code.
Add a check to event coin by searching MISP, to see if the IoCs already exist as part of an event.
husshhh dependabot
Bumps [requests](https://github.com/psf/requests) from 2.22.0 to 2.31.0. Release notes Sourced from requests's releases. v2.31.0 2.31.0 (2023-05-22) Security Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization...