Pyth3rNalisis is a malware analysis tool that searches for red flags in any file.
Project description
Pyth3rNalisis
Pyth3rNalisis is a powerful and modular Python-based analysis tool aimed at file analysis with a focus on malware detection. It is designed to be easily extensible, allowing users to add custom functionality through additional modules.
Features
- Automated Malware Detection: Automatically detect potential malware based on file signatures and patterns.
- Metadata Extraction: Extract and analyze metadata from various file formats.
- Comprehensive Logging: Keep detailed logs of all analysis processes for audit and review purposes.
- Modular Design: Custom modules can be integrated into the tool to extend its functionality.
- Cross-Platform: Works on both Windows and Unix-based systems.
Directory Structure
The project is organized as follows:
Pyth3rNalisis/
│
├── docs/ # Documentation files
│
├── examples/ # Example scripts and files demonstrating the tool’s usage
│
├── src/ # Source code of the project
│ ├── Pyth3rNalisis.py # Main script to run the analysis tool
│ ├── requirements.txt # Python dependencies for the project
│ ├── __init__.py # Package initializer
│ └── modules/ # Directory for additional modules
│ ├── module_banner.py # Module for displaying banners
│ ├── module_log.py # Module for enhanced logging
│ ├── worker_extension.py # Worker module for file extensions
│ ├── worker_metadata.py # Worker module for metadata extraction
│ └── __init__.py # Package initializer for the modules directory
│
└── tests/ # Test files for validating the tool’s functionality
├── malware/ # Test files containing malware-like signatures
│ ├── corrupted_magic.gif
│ ├── corrupted_magic.jpg
│ ├── corrupted_magic.pdf
│ ├── corrupted_magic.png
└── not_malware/ # Test files that do not contain malware
├── legitimate_GIF.gif
├── legitimate_JPG.jpg
├── legitimate_PDF.pdf
├── legitimate_PNG.png
Installation
- Clone the repository:
git clone https://github.com/Pyth3rEx/Pyth3rNalisis.git
- Navigate to the project directory:
cd Pyth3rNalisis
- Create and activate a virtual environment:
python3 -m venv env source env/bin/activate # On Windows use \`env\Scripts\activate\`
- Install dependencies:
pip install -r src/requirements.txt
Usage
To run the analysis tool and display it's options, execute the main script:
python src/Pyth3rNalisis.py -h
For more detailed usage, refer to the documentation in the `docs/` directory.
Contributing
Contributions are welcome! Please see the CONTRIBUTING for details.
License
This project is licensed under the GNU V3 License - see the LICENSE file for details.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file pyth3rnalisis-0.0.2.tar.gz.
File metadata
- Download URL: pyth3rnalisis-0.0.2.tar.gz
- Upload date:
- Size: 18.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/5.1.1 CPython/3.9.19
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 1e4a169b35cd32968576c26462d5d5fe3cb62f6f580ee6cadc522e50e97463ee |
|
| MD5 | c92a1ba8c46048a0acd9c67afa074bb8 |
|
| BLAKE2b-256 | 2d0c8c262e551e1c7801a639e0f8a31906fd96e4424861410562f256064c1294 |
File details
Details for the file Pyth3rNalisis-0.0.2-py3-none-any.whl.
File metadata
- Download URL: Pyth3rNalisis-0.0.2-py3-none-any.whl
- Upload date:
- Size: 20.0 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/5.1.1 CPython/3.9.19
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | d6c61c417e391aeb86a9535376369bd043bdd60c4810975c6251a635964ffeed |
|
| MD5 | 1f38322525d6049ff68ec40c63e98507 |
|
| BLAKE2b-256 | 72cbb252194e9129d36cb1ece63e8d2fb92c8e926e790ffb2e5ed6b68eac5624 |
