forensicator
forensicator
Hi @horsicq and team, Please add a live (start time) signatures DB update with users feedback. Ideally, the signatures DB would be synchronized with central repository and an anonymous priority...
Maybe this yara rules could be interesting: https://github.com/polymorf/findcrypt-yara/blob/master/findcrypt3.rules
https://github.com/fireeye/flare-floss Would be very cool.
Please, check this signatures: https://github.com/sooshie/packerid/blob/master/userdb.txt
Hi, It would be nice to have a possibility to check for encoded strings, data or code. Just a quick look gives me: https://github.com/hwhw/base64finder https://digital-forensics.sans.org/blog/2013/05/14/tools-for-examining-xor-obfuscation-for-malware-analysis This one is really cool:...
Hi, What do you thing about the possibility to categorize found strings from the executable based on dictionaries. I thing of having different dictionaries, like America English, English English, different...
Hi, Can you please implement the possibility to detect embedded resources. Let's say there is an executable embedded as part of another one. Compressed bundles, and so on, also could...
Please check what can be taken over from: https://github.com/katjahahn/PortEx I like this one:  and the anomalies: https://github.com/katjahahn/PortEx/blob/master/src/main/java/com/github/katjahahn/tools/anomalies/AnomalySubType.java
Hi @horsicq and team, Did I overlook a digital signatures check for the analyzed program? Can you please add this feature and make it possible to put your tags to...
Hi, Great tool. Please check this signatures: https://github.com/devttys0/binwalk/tree/master/src/binwalk/magic Greetings, Tolik