0xhughes's repositories
Photo_FingerPrint
This script was written in Python and is intended for use in the identification and correlation of images based on color variation percentage analysis.
credential_db
These Python scripts were written to create, populate, massage, and discover (via rainbow table'esque attack) dumped account credential information.
dumpmon_tweeter_scraper
This Python script monitors the Dumpmon Bot Twitter page, and saves the pastes posted by it.
auto_mal
This Python script is used to perform triage analysis of sorts on SWF and OLE sample files. Using some yara signatures created by Didier Stevens (http://blog.didierstevens.com/), some keyword checking, SWFTools (http://www.swftools.org/), and an OLE analysis module provided by Decalage (http://www.decalage.info/python/oletools), an output CSV file is created containing information to help triage further analysis targets from batches of potential malware samples.
IOC_Extractor
This Python script is used to generate Splunk/TAP/etc queries from Excel IOC definition files that match a certain format. I created this as a project to assist a colleague and felt maybe others would find it handy.
PyReview
This Python script was written as a Linux tool to perform a preview of image files present on an NTFS file system, and generate a PDF report of items of interest.