CLI wrapper for malware bazaar API (bazaar.abuse.ch)

These details have not been verified by PyPI

Project links

Project description

(Malware)Bazaar

A MalwareBazaar API wrapper and CLI

Installation

If you want to use the API only:

pip install malwarebazaar

If you want to use the CLI:

pip install malwarebazaar[cli]

Note: Previous versions also included pre-built binaries, however, I stopped adding them. Please just use a local python environment instead.

Usage

Python

from malwarebazaar.api import Bazaar

bazaar = Bazaar("myapikey")
response = bazaar.query_hash("Hash to search for.")
file = bazaar.download_file("Sha256 hash for file to donwload.")

CLI

$ bazaar init myapikey
Successfully set API-Key!
$ bazaar query hash f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807
Filename:       03891ab57eb301579005f62953dfd21e.exe
MD5:            03891ab57eb301579005f62953dfd21e
SHA1:           41efd56ea49b72c6dd53b5341f295e549b1b64a5
SHA256:         f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807
Imphash:        f34d5f2d4577ed6d9ceec516c1f5a744
Signature:      RedLineStealer
Tags:           exe, RedLineStealer
$ bazaar download f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807
$ file f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807.zip 
f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807.zip: Zip archive data, at least v5.1 to extract
$ bazaar download f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807 --unzip
$ file f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807.exe 
f670080b1f42d1b70a37adda924976e6d7bd62bf77c35263aff97e7968291807.exe: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

0.2.7

Nov 1, 2024

0.2.6

Dec 15, 2023

0.2.5

Dec 8, 2023

0.2.4

Oct 25, 2023

0.2.3

Oct 12, 2023

0.2.2

Mar 7, 2023

0.2.1

Jan 12, 2023

0.2.0

Dec 22, 2022

0.1.6

Dec 2, 2022

0.1.5

Oct 14, 2022

This version

0.1.5a2 pre-release

Oct 14, 2022

0.1.5a0 pre-release

Oct 14, 2022

0.1.4

Feb 22, 2022

0.1.3

Feb 21, 2022

0.1.2

Oct 12, 2021

0.1.1

Sep 28, 2021

0.1.0

Jun 16, 2021

0.0.2

Jun 15, 2021

0.0.1

Jun 11, 2021

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

malwarebazaar-0.1.5a2.tar.gz (9.1 kB view details)

Uploaded Oct 14, 2022 Source

Built Distribution

malwarebazaar-0.1.5a2-py3-none-any.whl (12.3 kB view details)

Uploaded Oct 14, 2022 Python 3

File details

Details for the file malwarebazaar-0.1.5a2.tar.gz.

File metadata

Download URL: malwarebazaar-0.1.5a2.tar.gz
Upload date: Oct 14, 2022
Size: 9.1 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: poetry/1.2.2 CPython/3.10.6 Linux/5.19.0-76051900-generic

File hashes

Hashes for malwarebazaar-0.1.5a2.tar.gz
Algorithm	Hash digest
SHA256	`e7dc468f2dc3967e863644f40237f70f86e256ff513bd87a1a4b368377b25156`
MD5	`323e5b494754459601ab21a9f5d6b8f4`
BLAKE2b-256	`ef76f2309455926b4394d86e652d64782d22a558df5a509aea02887b03121612`

See more details on using hashes here.

File details

Details for the file malwarebazaar-0.1.5a2-py3-none-any.whl.

File metadata

Download URL: malwarebazaar-0.1.5a2-py3-none-any.whl
Upload date: Oct 14, 2022
Size: 12.3 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: poetry/1.2.2 CPython/3.10.6 Linux/5.19.0-76051900-generic

File hashes

Hashes for malwarebazaar-0.1.5a2-py3-none-any.whl
Algorithm	Hash digest
SHA256	`c048769c1e35276d5e85106dece6c75bd0fb0b492b6461f7e6e3e300bbf831a0`
MD5	`fdd6ddc75471455b01783a7722470d34`
BLAKE2b-256	`9d9c537925c2c034bb5db8d80285015f49ef6cc840bc653215134f28922c92bf`