An aggregator for digital forensics blogs
numbers-to-string.py is a tool to help with deobfuscation: it transforms numbers found in its input into strings.
This new version adds option -b to produce binary output.
numbers-to-string_v0_0_8.zip (https)
MD5: 69179F5EE01F8E0102F40B768E80A82E
SHA256: 535518780E9F4102320C81EF799CF1AD483C51450690A2E1FA9F2CA61B7A8A88
This new version of cut-bytes.py, a tool to select a byte sequence from its input, has bug fixes (including Python 3 fixes) and 2 new options: -p –prefix and -s –suffix.
With these options, arbitrary data can be prefixed or appended to the input.
cut-bytes_V0_0_10.zip (https)
MD5: C14F60F9843F4C2A40A05A52CBE16AB8
SHA256: AD3ADBF30B09DB77B17FEF62C40CDC138516FD24B077201D126D259D1953792B
Here is an overview of content I published in October:
Blog posts:
Shark Jack Capture File PowerShell, Add-Type & csc.exe New Tool: simple_tcp_stats.py Quickpost: ExifTool, OLE Files and FlashPix Files Update: pecheck.py Version 0.7.8 Quickpost: Compiling Service DLLs with MinGW on Kali Quickpost: Running a Service DLLSANS ISC Diary entries:
YARA v3.11.0 released YARA’s XOR Modifier Wireshark 3.0.6 Released Using scdbg to Find ShellcodeNVISO blog posts:
Nessus’ UserAssist Plugin