Magic Byte Checker utility. Helps prevent phishing attacks!
USAGE:
python3 magicheck.py [options] [target directory or file]
The program will explore one's computer for files which do not match their extensions, starting with the target directory or file. If the target is a directory, the program will check all files within the directory. If the target is a file, it will only check that file.
-r Recursion Desired. Will recursively scan subdirectories.
--no-warning Suppresses "WARNING" type messages
--no-failure Suppresses "FAILURE" messages. Rather pointless, but who cares?
-q or --quiet Suppresses "SUCCESS" and "WARNING" messages
-v or --verbose Shows "SUCCESS" messages
--debug Shows debug statements. Not useful to users, who should use the verbose option instead.
-1137h4x0rz "Hacker Mode", with a short delay between prints to look cool!
This utility uses the python-magic library. It can be removed with little to no impact on core functionality.
The file signature for .plist files ("Binary Property List file") seems to not
detect some .plist files encountered during testing. The magic library
identifies them as XML 1.0 document, ASCII text.
PLANNED UPDATES:
- Finish adding signatures from Wikipedia's list https://en.wikipedia.org/wiki/List_of_file_signatures
- Add some quality of life improvements
- Will likely convert it to a Cython program.
- Add some detection using MIME types (?)
- Working to filter out raw text files (such as source code) from warnings, as they currently cause warning statements.
- Speed optimizations and compactness modifications.
- Move signature list to external file.
- Considering moving to customizable signature list files