trisulnsm
commented
6 years ago Awesome work !
Closed JunPritsker closed 6 years ago
trisulnsm
commented
6 years ago Awesome work !
trisulnsm
commented
6 years ago What does the FP in "Malware Test FP" mean in each of the descriptions ?
JunPritsker
commented
6 years ago "Fingerprint". At least that's what I assumed lines 290-293 meant.
I downloaded and processed the PCAPs at malware-traffic-analysis.net and produced ja3 hashes. I organized the data by unique hashes where the description for a given hash lists all the malware that produced that hash. Some hashes I've added already exist in the data set. These hashes need to be further tested and verified.