search

mandiant / VM-Packages

Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
Apache License 2.0
136 stars 62 forks source link

Package proposal: byteheist.vm #174

Open seanthegeek opened 1 year ago

seanthegeek commented 1 year ago

Package Name

byteheist

Tool Name

Byteheist

Package type

ZIP_EXE

Tool's version number

1.0 (Build 102)

Category

PE

Tool's authors

Christian Wojner

Tool's description

A tool for generating byte-usage-histograms for all types of files with a special focus on binary executables in Windows PE files

Download URL

https://cert.at/media/files/downloads/software/bytehist/files/bytehist_1_0_102_windows.zip

Download SHA256 Hash

abe51e3d7de3e3d9681d446c89bcf11b254da87f253f5bd20bb5e8103e893e13

Why is this tool a good addition?

It provides a nice visual representation of files, especially PE files

mr-tz commented 1 year ago

Can the functionality be provided by an existing tool like e.g. 010 editor and/or die?

Ana06 commented 1 month ago

@mandiant/flare-vm @seanthegeek any updates/opinions about adding this tool?