-
```
We have an automated malware analysis system that runs a variety of scans in
memory on input files. We patched PDFCore.py to enable string input of file
contents, rather than a filename. It is…
-
Can you please investigate how difficult it would be to port agent.py over to a native windows scripting language such as Powershell or vbScript?
Malware such as Furtim/SFG now attempts to look for r…
-
### Why is it worth to add this package?
The smartmontools package contains two utility programs (smartctl and smartd)
to control and monitor storage systems using the Self-Monitoring, Analysis and
…
-
It looks like MaxSecure is the only vendor marking it as malware. It labels it as:
Trojan.Dropper.AndroidOS.Hqwar.bb
I've done a little digging, so far it's not obvious why it's marking it as ma…
-
## Use case
Hi,
The current "Related reports" feature seems to show possible related reports, if they share a common indicator / observable.
It would be great if it could be expanded to also show o…
-
I scanned the zip with VT and it came out that it had Trojan.Malware.300983.susgen is it real?
https://www.virustotal.com/gui/file/81473c1d76859db77561050f0a9fe612a195e00b57bc2ffa2bb81305d316e56a/…
-
Hi. I'm using the tls_flow_filter to generate malicious.csv from the json file, which is generated by Cisco Joy Tool. All pcap files are collected at http://malware-traffic-analysis.net/, and I use y…
-
Hi team,
Just as the security events panel was redesigned here https://github.com/wazuh/wazuh-kibana-app/issues/2428, we are going to introduce some changes in the rest of the module. Below are som…
-
Currently, there's no explicit way to capture the detection state (i.e. if something was explicitly reported/analyzed as malicious) in the AnalysisType. We should consider adding a structure for doing…
-
```
We have an automated malware analysis system that runs a variety of scans in
memory on input files. We patched PDFCore.py to enable string input of file
contents, rather than a filename. It is…