This new version adds CSV output via option -C:
hash_V0_0_6.zip (https)
MD5: DE0AC3F7809E55E1577EB049A5F34EDF
SHA256: D66FF1D5173E3DDAFC842087B9E4E8447C18EF0AA8C03E02A365E3F9028BA8D9
Quickpost: Using pcapy with Npcap on Windows
I installed pcapy on a Windows machine, but importing in Python failed due to a missing DLL.
Process Monitor showed me what was missing: wpcap.dll, a WinPcap DLL:
The DLL was missing because I had installed Npcap (an alternative for WinPcap, that provides loopback packet capture).
This problem can be fixed by setting a toggle to install a WinPcap compatible API (e.g. wpcap.dll) during installation:
Quickpost info
Overview of Content Published in October
Here is an overview of content I published in October:
Blog posts:
KEIHash: Fingerprinting SSH Release: Python Tool Templates New tool: decompress_rtf.py Update: pdf-parser.py Version 0.6.9 Update: oledump.py Version 0.0.38 Analyzing PowerPoint Maldocs with oledump Plugin plugin_ppt Update: file-magic.py Version 0.0.3 Update: file-magic.py Version 0.0.4 Update: format-bytes.py Version 0.0.6SANS ISC Diary entries:
Decoding Custom Substitution Encodings with translate.py Developing YARA Rules: a Practical Example YARA: XOR Strings YARA XOR Strings: Some Remarks Maldoc: Once More It’s XOR CyberChef: BASE64/XOR Recipe MSG Files: Compressed RTF Detecting Compressed RTF Maldoc Duplicating PowerShell Prior to Use