-
Currently, we calculate imphash also from delayed imports, but if we want to use our imphashes fro example in YARA, or any other place which use standardized imphash, we should not consider delayed im…
-
As of right now, we accumulate bytes that are being hashed for imphash whenever we run into new import (in `retdec::fileformat::ImportTable::addImport`). This works for PE since information about impo…
-
**Plaso version:**
Plaso Version 1.5.1
**Operating system Plaso is running on:**
Ubuntu 16.04 LTS
**Installation method:**
Installed from [GiFT]
**Description of problem:**
After parsing …
n3x77 updated
5 years ago
-
Is there a way to get traffic from elasticsearch into the brawl format automatically? I have unfetter analytic set up and I have pointed Cascade to the ES database, but Cascade isn't seeing anything.
…
-
Dear FACT_core Team,
I am missing the 'software_components' item with the found libraries in the /rest/firmware GET response, which was there before.
It would be very kind if you guys could add …
-
**Plaso version:**
plaso-20171020 (pre-release)
**Operating system Plaso is running on:**
Ubuntu 14
**Installation method:**
Manual installation (setup.py from plaso-20171020.tar.gz)
…
-
**Describe the problem**
After last PR specifically this update: https://github.com/Cyb3rWard0g/HELK/pull/56/commits/e70eafce0908a8607a85e68aaf4639fdeedbc936 , I noticed the following error messages …
-
when I run the demo code, At the end I see the output of imphash value as
```
imphash: (null)
```
-
Hi,
Im executing this code from python console and the event is being created into misp without attribute. When executing the `add_domain_ip` the console returns `[{'message': 'Could not save the …
-
## Background
It looks like the latest build of neo23x0's yara ruleset is breaking this build? Based on what i've been able to find it looks like there is possibly some type of version mismatch wit…