mirror of
https://github.com/gnh1201/welsonjs.git
synced 2024-10-04 15:11:54 +00:00
Updated File Event Monitor (markdown)
parent
0cd0e4945e
commit
01ab7da593
|
@ -81,11 +81,10 @@ WelsonJS can be utilized in conjunction with [MITRE ATT&CK (attack.mitre.org)](h
|
|||
#### ClamAV integration
|
||||
Starting from WelsonJS version 0.2.7.37, [ClamAV (www.clamav.net)](https://www.clamav.net/) integration will be supported.
|
||||
|
||||
#### YARA signature matching
|
||||
WelsonJS has a [YARA signature matching (github.com/VirusTotal/yara)](https://github.com/VirusTotal/yara) scenario for file events. The code will be released soon.
|
||||
|
||||
#### Packer identification
|
||||
We plan to integrate a tool that can identify file formats. Software such as [PEiD (snaker, Qwerton, Jibz & xineohP)](https://github.com/wolfram77web/app-peid) is well-known for this purpose. The current leading candidate is [Detect-It-Easy (github.com/horsicq/Detect-It-Easy)](https://github.com/horsicq/Detect-It-Easy).
|
||||
#### Future Planned Features
|
||||
* ***YARA Signature Matching***: WelsonJS will include a YARA signature matching feature for file events. The code will be available soon. For more information, visit [YARA on GitHub](https://github.com/VirusTotal/yara).
|
||||
* ***Packer Identification***: We plan to integrate a tool for identifying file formats. While software like [PEiD](https://github.com/wolfram77web/app-peid) is well-known for this purpose, the current leading candidate is [Detect-It-Easy](https://github.com/horsicq/Detect-It-Easy).
|
||||
* ***Integration with Intelligence Services***: Details are available in [issue #142](https://github.com/gnh1201/welsonjs/issues/142) on GitHub.
|
||||
|
||||
## Contact me
|
||||
- abuse@catswords.net
|
||||
|
|
Loading…
Reference in New Issue
Block a user