issues
search
dod-cyber-crime-center
/
DC3-MWCP
DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.
Other
300
stars
59
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Feature Request: Can i make FileObj performs data transfer in separate parsing?
#47
test12391
closed
2 months ago
1
Bug: Installation Broken with SetupTools>=70.0.0 on Windows
#46
notgriffin
opened
5 months ago
1
Feature Request: Report Serialization
#45
rhartig-ct
opened
5 months ago
1
Update PythonStyleGuide.md
#44
dkorzhevin
closed
8 months ago
0
Add Python support up to 3.12
#43
cccs-rs
closed
9 months ago
2
Catch OSError for DateTime constructs and raise as ConstructError
#42
ddash-ct
closed
12 months ago
0
Raise OSErrors from DateTime structures as ConstructErrors
#41
ddash-ct
closed
12 months ago
0
Recursion Bug
#40
ddash-ct
closed
8 months ago
1
Feature Request: Pytest Coverage Reports for Parser Test Cases
#39
notgriffin
closed
1 year ago
1
Scheduled Task Metadata Field
#38
ddash-ct
closed
1 year ago
1
`mwcp test` doesn't allow using `--yara-repo`
#37
ddash-ct
closed
1 year ago
2
Fix bug with version comparison in test_parsers
#36
ddash-ct
closed
1 year ago
0
GitHub Action Workflow
#35
kchason
closed
1 year ago
0
Updated mwcp config.load to accept a str or pathlib path
#34
rhartig-ct
closed
2 years ago
0
Feature Request: allow formatted dictionary/list output in CLI
#33
jonbees-ibm
closed
1 year ago
2
poshdeob.py detected as malicious (VirusTotal)
#32
foxalfabravo
closed
2 years ago
2
Report writer UnicodeDecodeError
#31
ddash-ct
closed
2 years ago
3
Enable setting timezone in construct Adapters
#30
ddash-ct
closed
2 years ago
0
Updated test case path for foo
#29
ddash-ct
closed
3 years ago
0
upgrade pyparsing, tested with poshdeob
#28
doomedraven
closed
3 years ago
9
added additional fields
#27
cccs-aa
closed
3 years ago
1
Added source argument to Dispatcher initialization to comply with new method signature
#26
tamas-boczan
closed
4 years ago
0
Pecon's PE object initialization is broken
#25
tamas-boczan
closed
4 years ago
0
Fix bug in construct.Base64 adapter
#24
ddash-ct
closed
4 years ago
0
UnableToParse sub-group bugfix
#23
ddash-ct
closed
4 years ago
0
Update windows_structures in construct extension utility
#22
ddash-ct
closed
4 years ago
0
fixed glob notimplemented error
#21
cccs-aa
closed
4 years ago
1
kordesii decoder fix
#20
ddash-ct
closed
4 years ago
0
Bump requests from 2.19.1 to 2.20.0
#19
dependabot[bot]
closed
4 years ago
1
Bump pyyaml from 3.13 to 5.1
#18
dependabot[bot]
closed
4 years ago
1
Bump urllib3 from 1.23 to 1.24.2
#17
dependabot[bot]
closed
4 years ago
1
Fix typo in click.option
#16
ddash-ct
closed
5 years ago
0
Fixed bug where pefileutils.obtain_export_list contains null entry
#15
ddash-ct
closed
5 years ago
0
force testcase add/update
#14
ddash-ct
closed
5 years ago
0
Error installing with pip
#13
jdsnape
closed
4 years ago
5
pefileutils.__obtain_exif_fname__ Error
#12
ddash-ct
closed
5 years ago
0
Fixes a bug in knowledge_base where there can be multiple instances o…
#11
ddash-ct
closed
5 years ago
0
kordesii Reporter incompatible with 1.3.0
#10
ddash-ct
closed
5 years ago
1
Added argument to run_kordesii_decoder to enable specifciation of the…
#9
ddash-ct
closed
5 years ago
0
Cannot set decoderdir for run_kordesii_decoder
#8
ddash-ct
closed
5 years ago
0
test.py
#7
ghost
closed
5 years ago
0
parsers not in list
#6
ghost
closed
6 years ago
1
Initial support for python3
#5
mlaferrera
closed
6 years ago
0
Fix broken headings in Markdown files
#4
bryant1410
closed
7 years ago
0
No support for python3
#3
mlaferrera
closed
6 years ago
5
Fields in malwareconfigreporter and fields.json do not match, using certain fields results in error.
#2
kevoreilly
closed
7 years ago
1
"unhashable type 'list'" when adding a list to reporter metadata
#1
agrajag9
closed
5 years ago
2