Skip to content

Penetration Testing

  • Home
  • Forensics
  • Machine Learning
  • Malware Analysis
  • Networking
  • Network PenTest
    • Information Gathering
    • Vulnerability Analysis
    • Exploitation
      • Metasploit
    • Post Exploitation
    • Maintaining Access
    • Password Attacks
    • Sniffing & Spoofing
    • Smartphone PenTest
    • Wireless
  • Reverse Engineering
  • Programming
  • Technique
  • Web PenTest
    • Web Information Gathering
    • Web Vulnerability Analysis
    • Web Exploitation
    • Web Maintaining Access
    • Reporting
  • Home
  • Forensics
  • Machine Learning
  • Malware Analysis
  • Networking
  • Network PenTest
    • Information Gathering
    • Vulnerability Analysis
    • Exploitation
      • Metasploit
    • Post Exploitation
    • Maintaining Access
    • Password Attacks
    • Sniffing & Spoofing
    • Smartphone PenTest
    • Wireless
  • Reverse Engineering
  • Programming
  • Technique
  • Web PenTest
    • Web Information Gathering
    • Web Vulnerability Analysis
    • Web Exploitation
    • Web Maintaining Access
    • Reporting

Penetration Testing

  • Malware Analysis

multiscanner v2.0.0 releases: Modular file scanning/analysis framework

by do son · Published January 29, 2019 · Updated October 10, 2021

MultiScanner is a file analysis framework that assists the user in evaluating a set of files by automatically running a suite of tools for the user and aggregating the output. Tools can be custom built Python scripts, web APIs, software running on another machine, etc. Tools are incorporated by creating modules that run in the MultiScanner framework.

Modules are designed to be quickly written and easily incorporated into the framework. Currently written and maintained modules are related to malware analytics, but the framework is not limited to that scope. For a list of modules, you can look in modules/. Descriptions and config options can be found on the Analysis Modules page.

It also supports a distributed workflow for sample storage, analysis, and report viewing. This functionality includes a web interface, a REST API, a distributed file system (GlusterFS), distributed report storage/searching (Elasticsearch), and distributed task management (Celery / RabbitMQ). Please see Architecture for more details.

An installer script is included in the project install.sh, which installs the prerequisites on most systems.

multiscanner

Changelog v2.0.0

MultiScanner 2.0 includes a large refactor of the code base to better support Python packaging and imports.

Other changes include:

  • migration to ElasticSearch 6 for distributed mode
  • multiselect file download
  • API /storage stability improvements (#74)
  • add tags at upload (#122)
  • add module for Endgame’s Ember benchmark model
  • updates to docker image
  • several bug fixes.

Installation

$ git clone https://github.com/mitre/multiscanner.git
$ cd multiscanner
$ sudo -HE ./install.sh
$ python multiscanner.py init

Usage

Copyright (c) 2015, The MITRE Corporation. All rights reserved.

Source: https://github.com/mitre/

Share

Tags: analysis-frameworkanalytic-machinesantiviruscuckooLinuxmalwareMalware Analysismalware-analyzermalware-researchmetadatamultiscannerPythonpython-scriptscanningYARA

  • Next story MemITM: Tool to make in memory man in the middle
  • Previous story sshuttle v1.1.1 releases: Transparent proxy server

Follow:

Search




Reward

Brilliantly

SAFE!


securityonline.info

Content & Links

Verified by Sur.ly

2022

Technology News

  • SilverStone showcases IceMyst AIO CPU coolers and a variety of new ATX 3.0 power supplies
  • Asus Unveils New GeForce RTX 4070 Megalodon Graphics Card
  • iPhone 15 series will begin mass production this month
  • Google Tensor G3 parameter details leaked: Support AV1 encoding and UFS 4.0 storage
  • Minisforum launches NPB5 Mini PC

  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • DMCA NOTICE

Penetration Testing © 2023. All Rights Reserved.

x
x