malcom
malcom copied to clipboard
tomchop
Malcom - Malware Communications Analyzer
Would love to see this running natively on ubuntu 18. Thanks Tom!
Hi.. Can you tell me, what max size pcap that can i analize? And how to modify script to resize max upload pcap? Thanks
Hi.. This tools is really owsome, i have an idea, how if you add some tools to get the signature, country name and location for malware analysis Thanks for you...
have encountered problem during install! ommand "/root/malcom/env-malcom/bin/python2 -u -c "import setuptools, tokenize;**file**='/tmp/pip-build-PX89Xx/cryptography/setup.py';exec(compile(getattr(tokenize, 'open', open)(**file**).read().replace('\r\n', '\n'), **file**, 'exec'))" install --record /tmp/pip-tybGJc-record/install-record.txt --single-version-externally-managed --compile --install-headers /root/malcom/env-malcom/include/site/python2.7/cryptography" failed with error code 1 in...
Add a switch to make sure Malcom does not communicate with external infrastructure: - Prevent rDNS when sniffing and detecting IPs - Prevent DNS resolutions in analytics module - Prevent...
It will be also nice, if it could be possible to hide things based on the filter selection. For example to quickly remove all google stuff, a things like "not...
It will be nice to be able to select start/stop date of the analysed data on a given pcap.
I installed Malcom as a Docker container in a new, stock Ubuntu 14.04 VM (& also from github, same result). When I try to run it using the syntax from...
I routed traffic from a host through malcom to www.ford.com and now everytime I start it the app keeps analyzing metrics.ford.com for hours and never stops. Any idea what it...
### Elements Be able to tag an element (add / remove) Be able to edit an element's `evil` attribute (by selecting an already existing attribute or adding a new one)...