issues
search
maurermj08
/
efetch
Evidence Fetcher (efetch) is a web-based file explorer, viewer, and analyzer.
Apache License 2.0
37
stars
7
forks
source link
Ideas for efetch
#15
Open
maurermj08
opened
7 years ago
maurermj08
commented
7 years ago
Plugins:
Cuckoo Sandbox:
A plugin that forwards a file to Cuckoo for analysis
https://cuckoosandbox.org/
CRITs
: A plugin that forwards a file to CRITs for analysis
https://crits.github.io/
WMI
: A WMI parsers that uses Willi Ballenthin's parser
https://github.com/fireeye/flare-wmi
FLOSS
: A plugin that runs Willi Ballenthin's FLOSS tool on a file
https://github.com/fireeye/flare-floss
Granks
: A plugin that sends a file to Granks for analysis, preferably using the action plugin to be able to send multiple files
https://gransk.com/
YARA
: An action plugin that runs YARA rules
http://virustotal.github.io/yara/
STIX
: An action plugin that runs STIX rules
https://stixproject.github.io/
Misc:
dfVFS Remote Wrapper:
A wrapper for dfVFS that indicates a file exists on a specific remote system
Docker:
An efetch docker file and image
VM:
A pre-built efetch virtual box VM or OVA
Plugins:
Misc: