Skip to main content

A utility to perform static analysis on files.

Project description

Static-analysis-script

Welcome to the Static Analysis Script! This Python tool is crafted to extract emails, paths, files, URLs, and IPs from the specified file for analysis.

Purpose

This tool aids in the collection of data essential for static analysis, accelerating the detection of Indicators of Compromise (IOCs) and other potentially malicious activities executed by files.

Installation

option 1:

pip install from the pypi project

  python -m pip install static-analysis-script

please make sure to download the latest version, currently 0.2.3

option 2:

git clone the project. pip install local from the git directory

  git clone https://github.com/perzibel/static-analysis-script.git
  cd static-analysis-script
  python -m pip install .

Usage

image

Analysis of Executables and DLL Files

The tool employs strings.exe to pull strings from executable (EXE) and dynamic link library (DLL) files, analyzing these strings to pinpoint paths, files, IP addresses, and URLs.

NEW! extract WinApi commands in the file

Analysis of CSV Files

For Comma-Separated Values (CSV) files, the tool extracts relevant information by directly reading the contents of the files.

Analysis of Word Documents

Utilizing the zipfile library, the tool processes Word documents, extracting embedded emails and URLs from various sections.

Analysis of PDF Files

extract ALL visiable and hidden URIs

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

static_analysis_script-0.2.7.tar.gz (390.8 kB view details)

Uploaded Source

Built Distribution

static_analysis_script-0.2.7-py3-none-any.whl (389.3 kB view details)

Uploaded Python 3

File details

Details for the file static_analysis_script-0.2.7.tar.gz.

File metadata

  • Download URL: static_analysis_script-0.2.7.tar.gz
  • Upload date:
  • Size: 390.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/5.0.0 CPython/3.12.2

File hashes

Hashes for static_analysis_script-0.2.7.tar.gz
Algorithm Hash digest
SHA256 0ff18e24b33c4a9dadfdef01b602e093e432de1599178e37b3eae911a242bd87
MD5 b42044f3a42caae5d1439dd82620adb3
BLAKE2b-256 ca2b380efa55302064b732f48307b264e680567ecdbc2d5405d06fc7a4eb6ceb

See more details on using hashes here.

File details

Details for the file static_analysis_script-0.2.7-py3-none-any.whl.

File metadata

File hashes

Hashes for static_analysis_script-0.2.7-py3-none-any.whl
Algorithm Hash digest
SHA256 0a1e97c955e63bdb9b2a8515382a361a39516d21207cbabfe19bd65c520c69df
MD5 231d98b1377e7fdab2fb5d6f188dacb2
BLAKE2b-256 ef9b389e60b5d1d7936d193e3d08e86c6d2b8f6ee1b0222420ffb4e8636780b4

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page