0xhughes

Pinned Repositories

auto_mal
This Python script is used to perform triage analysis of sorts on SWF and OLE sample files. Using some yara signatures created by Didier Stevens (http://blog.didierstevens.com/), some keyword checking, SWFTools (http://www.swftools.org/), and an OLE analysis module provided by Decalage (http://www.decalage.info/python/oletools), an output CSV file is created containing information to help triage further analysis targets from batches of potential malware samples.
Language:Python8 3 02
credential_db
These Python scripts were written to create, populate, massage, and discover (via rainbow table'esque attack) dumped account credential information.
Language:Python11
dumpmon_tweeter_scraper
This Python script monitors the Dumpmon Bot Twitter page, and saves the pastes posted by it.
Language:Python11
IOC_Extractor
This Python script is used to generate Splunk/TAP/etc queries from Excel IOC definition files that match a certain format. I created this as a project to assist a colleague and felt maybe others would find it handy.
Language:Python30
Photo_FingerPrint
This script was written in Python and is intended for use in the identification and correlation of images based on color variation percentage analysis.
Language:Python91
PyReview
This Python script was written as a Linux tool to perform a preview of image files present on an NTFS file system, and generate a PDF report of items of interest.
Language:Python00

0xhughes's Repositories

0xhughes/Photo_FingerPrint
This script was written in Python and is intended for use in the identification and correlation of images based on color variation percentage analysis.
Language:Python91
0xhughes/auto_mal
This Python script is used to perform triage analysis of sorts on SWF and OLE sample files. Using some yara signatures created by Didier Stevens (http://blog.didierstevens.com/), some keyword checking, SWFTools (http://www.swftools.org/), and an OLE analysis module provided by Decalage (http://www.decalage.info/python/oletools), an output CSV file is created containing information to help triage further analysis targets from batches of potential malware samples.
Language:Python8 3 02
0xhughes/IOC_Extractor
This Python script is used to generate Splunk/TAP/etc queries from Excel IOC definition files that match a certain format. I created this as a project to assist a colleague and felt maybe others would find it handy.
Language:Python30
0xhughes/credential_db
These Python scripts were written to create, populate, massage, and discover (via rainbow table'esque attack) dumped account credential information.
Language:Python11
0xhughes/dumpmon_tweeter_scraper
This Python script monitors the Dumpmon Bot Twitter page, and saves the pastes posted by it.
Language:Python11
0xhughes/PyReview
This Python script was written as a Linux tool to perform a preview of image files present on an NTFS file system, and generate a PDF report of items of interest.
Language:Python00