Sample Finder is a modular tool to search for and download malware samples from public malware sources.
Project description
Sample Finder
Sample Finder is a modular tool to search for and download malware samples from public malware sources.
Supported sources
- Malpedia
- MalShare
- Malware Bazaar
- VirusShare
- Triage
- VirusExchange
- VirusTotal (only checks if the sample is available on VirusTotal and does not support downloading)
Installation
Pip
$ pip install sample-finder
Development
$ git clone git@github.com:joren485/sample-finder.git
$ cd sample-finder
$ uv sync
$ source .venv/bin/activate
$ sample-finder --help
Config
You need a config file with API tokens for each supported source.
You can find an example in example.confg.yaml:
---
sources:
malshare:
api_key: "API KEY"
malpedia:
api_key: "API KEY"
malwarebazaar:
api_key: "API KEY"
virusshare:
api_key: "API KEY"
virustotal:
api_key: "API KEY"
triage:
api_key: "API KEY"
virusexchange:
api_key: "API KEY"
Usage
$ sample-finder --help
Usage: sample-finder [OPTIONS]
Download hashes from multiple sources.
╭─ Options ──────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╮
│ * --input -i FILE [default: None] [required] │
│ * --output -o DIRECTORY [default: None] [required] │
│ --config -c FILE [default: config.yaml] │
│ --verbose -v │
│ --install-completion Install completion for the current shell. │
│ --show-completion Show completion for the current shell, to copy it or customize the installation. │
│ --help Show this message and exit. │
╰────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────╯
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file sample_finder-1.0.0.13.tar.gz.
File metadata
- Download URL: sample_finder-1.0.0.13.tar.gz
- Upload date:
- Size: 30.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.7.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
3f9d73966b6cc6d96a8c9c664fbba28212a2ea60479ab47353f5f5ecd4f45b60
|
|
| MD5 |
bf75fbea06cc2a23d06c7d0ed4f6aca1
|
|
| BLAKE2b-256 |
df74269b3395cbe6bb9a1f0fdf4afcfa53f1b6f18739092f1446ace157f35e93
|
File details
Details for the file sample_finder-1.0.0.13-py3-none-any.whl.
File metadata
- Download URL: sample_finder-1.0.0.13-py3-none-any.whl
- Upload date:
- Size: 10.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.7.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
615657a1d8e6c25c6f01f6098fb8e3219ed29d89ac0dc12d0f805f33b5ce0872
|
|
| MD5 |
36f93b5a493cd5cb4dc41a30046f47f5
|
|
| BLAKE2b-256 |
07d073c22be78de82c1c746843f2458092c82a3ecabddf6f3c723f7e54d915f5
|
