Skip to content

Akalabaya/Advanced-threat-response-for-Evotin-2000

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
logs
logs
 
 
malware
malware
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
Procmon.exe
Procmon.exe
 
 
README.md
README.md
 
 
WinDump.exe
WinDump.exe
 
 
main.py
main.py
 
 
pd32.exe
pd32.exe
 
 
sb.exe
sb.exe
 
 
test.cmd
test.cmd
 
 

Repository files navigation

This is a project to analyse files to generate procmon logs,windump pcap,and extact codechunks and analyze

Instructions:
   [+] Put your malware file in malware folder with name a.exe
   [+] Install winpcap https://www.winpcap.org/install/
   [+] Install sandboxie 
   [+] Edit line 34 and 35 and in line 34 put your sandboxie executable path and on 35 put the path to your sandbox folder.
   [+] Run cmd as administrator then locate the folder where you have downloaded this repository and run main.py or run.cmd.
   [+] Within some time the results will generated in analyse folder.
   [+] All issues are accepted in issues tab
Requirements:
   [+] Python 3.5 or above 
   [+] C++ redistributable 2015
Note:The project is very early for production you may have many issues try to fix them and please give in pull request tab if you have time..

About

This is a project to analyze files to generate procmon logs,windump pcap,and extact codechunks and analyze

Topics

python3 cybersecurity malware-analysis sandboxie processmonitoring

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages