xorhex
xorhex
**Describe the bug** Trying to run shellcode and does not appear to be getting to the part where it runs the shellcode at all when calling via a custom python...
Awesome project! A fresh install needed the python library unidecode installed as well. Guessing it should be added to requirements.txt?
I've a case where I only want to find the first instance of `$` however, when `$` is `{ 00 }` it will have too many hits and slow down...
First, a big THANK YOU to the folks at AVAST for releasing and maintaining this plugin. :muscle: I found myself making use of the `pe.import_rva` function and discovered that `Unrecognized...
``` Querying all services [*] AssemblyLine: panic: send on closed channel goroutine 35 [running]: main.hashFileAndCheck({0xc0003dbac0, 0x40}, 0x0?) ~/src/mlget/mlget.go:398 +0x20a main.downloadMalwareFromCLI.func2() ~/src/mlget/mlget.go:244 +0x55 created by main.downloadMalwareFromCLI in goroutine 1 ~/src/mlget/mlget.go:242 +0xbe9...
Error: ``` [*] Triage: https://tria.ge/api/v0 [-] Hash 6784b646378c650a86ba4fdd4baaaf608e5ecdf171c71bb7720f83965cc8c96f Sample ID: 240731-nwrnca1enp 2024/08/01 09:17:32 zip: invalid password ``` Tested manually and the default password has not changed, so need to figure...
Is it possible to capture the out parameter/return value (assuming `eax`) once the Windows API call returns?
Reviewing the [python documentation](https://virustotal.github.io/yara-x/docs/api/python/#module_outputs), one can get the module outputs. How does one access this structure when using golang as `Scan` returns the matching rules without the module outputs (as...
Anyone able to get this to compile with the cmake installed as part of VS 17 2022?
If I'm reading this correctly, the console_log callback does not return the file name of the file that triggered it. Could the callback be extended to include the file name...