Pastehunter

Project description

PasteHunter

PasteHunter is a python3 application that is designed to query a collection of sites that host publicly pasted data. For all the pastes it finds it scans the raw contents against a series of Yara rules looking for information that can be used by an organisation or a researcher.

Setup

For setup instructions please see the official documentation https://pastehunter.readthedocs.io/en/latest/installation.html

Supported Inputs

Pastehunter currently has support for the following sites:

pastebin.com
gist.github.com # Gists
github.com # Public commit activity feed
slexy.org
stackexchange # There are about 176!

Supported Outputs

Pastehunter supports several output modules:

dump to ElasticSearch DB (default).
Email alerts (SMTP).
Slack Channel notifications.
Dump to JSON file.
Dump to CSV file.
Send to syslog.
POST to URL

Supported Sandboxes

Pastehunter supports several sandboxes that decoded data can be sent to:

Cuckoo
Viper

For examples of data discovered using pastehunter check out my posts https://techanarchy.net/blog/hunting-pastebin-with-pastehunter and https://techanarchy.net/blog/pastehunter-the-results

Project details

Release history Release notifications | RSS feed

This version

1.4.2

Dec 13, 2020

1.4.1

Nov 26, 2020

1.4.0

Nov 23, 2020

1.3.2

Feb 15, 2020

1.3.1

Feb 15, 2020

1.2.1

Dec 29, 2019

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

pastehunter-1.4.2.tar.gz (28.5 kB view hashes)

Uploaded Dec 13, 2020 Source

Hashes for pastehunter-1.4.2.tar.gz

Hashes for pastehunter-1.4.2.tar.gz
Algorithm	Hash digest
SHA256	`c4fa5acaa22d9b18157f9d83a6ca073fdea0c0f62af987edf3e36554ec25e799`
MD5	`bf3ff1425eb86393e51f7d0538b92d54`
BLAKE2b-256	`44b68b4aa2c4202cff5e8d39bd9a8a3b30b45d18d038d576c7133ab4e6ba6f56`