{"id":27260269,"url":"https://github.com/53845714nf/malwarebazaar","last_synced_at":"2025-04-11T04:43:58.012Z","repository":{"id":287272246,"uuid":"964178869","full_name":"53845714nF/malwarebazaar","owner":"53845714nF","description":"A minimal Python wrapper for the MalwareBazaar API 🧪, designed to simplify interaction with the malware sample repository provided by abuse.ch.","archived":false,"fork":false,"pushed_at":"2025-04-10T22:23:17.000Z","size":17,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-11T04:43:53.789Z","etag":null,"topics":["api","cybersecurity","malware","python3","threat-intelligence","wrapper"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/53845714nF.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-04-10T20:09:03.000Z","updated_at":"2025-04-10T22:12:38.000Z","dependencies_parsed_at":"2025-04-10T21:42:56.757Z","dependency_job_id":null,"html_url":"https://github.com/53845714nF/malwarebazaar","commit_stats":null,"previous_names":["53845714nf/malwarebazaar"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/53845714nF%2Fmalwarebazaar","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/53845714nF%2Fmalwarebazaar/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/53845714nF%2Fmalwarebazaar/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/53845714nF%2Fmalwarebazaar/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/53845714nF","download_url":"https://codeload.github.com/53845714nF/malwarebazaar/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248345284,"owners_count":21088242,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api","cybersecurity","malware","python3","threat-intelligence","wrapper"],"created_at":"2025-04-11T04:43:57.449Z","updated_at":"2025-04-11T04:43:57.996Z","avatar_url":"https://github.com/53845714nF.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003e [!CAUTION]\n\u003e Caution, this program downloads real malware samples. Always use this in a secure and isolated environment.\n\n# 🐍 MalwareBazaar Lib\nA minimal Python wrapper for the [MalwareBazaar API](https://bazaar.abuse.ch/api/) 🧪, designed to simplify interaction with the malware sample repository provided by **abuse.ch**.\n\n\n## ✨ Features\n- 🔍 Search for malware samples by:\n  - 🏷️ Tag\n  - File Type\n  - Hash (SHA256)\n- 📥 Download malware samples\n\n## 📦 Installation\nThe lib need `7z` Command Line tool:\n\n```bash\nsudo apt install 7zip\n```\n\nInstall the lib via `pip`:\n\n```bash\npip install \n```\n\n## 🛠️ Usage \n\nCreate a new bazaar Instance:\n```python \nfrom mawarebazaar import Bazaar\n\nbazaar = Bazaar(api_key='your-api-key')\n```\n\nUse functions like `query_tag`:\n\n```python\nbazaar.query_tag('mirai', 100)\n```\n\n\n## ✅ API Coverage\n\n Feature\t                                        | Supported\n -------------------------------------------------- | ------------\nSubmission Policy                                   | ❌\nSubmit (upload) a malware sample                    | ❌\nRetrieve (download) a malware sample                | ✅\nQuery a malware sample (hash)                       | ✅ (Only SHA256)\nQuery tag                                           | ✅\nQuery signature                                     | ❌\nQuery filetype                                      | ✅\nQuery ClamAV signature                              | ❌\nQuery imphash                                       | ❌\nQuery TLSH                                          | ❌\nQuery telfhash                                      | ❌\nQuery gimphash                                      | ❌\nQuery icon dhash                                    | ❌\nQuery YARA rule                                     | ❌\nQuery Code Signing Certificates (by Issuer CN)      | ❌\nQuery Code Signing Certificates (by Subject CN)     | ❌\nQuery Code Signing Certificates (by Serial Number)  | ❌\nUpdate an entry                                     | ❌\nAdd a comment                                       | ❌\nQuery latest malware samples (recent additions)     | ❌\nQuery Code Signing Certificate Blocklist (CSCB)     | ❌\n\n## 🤝 Contributing\nContributions are very welcome! 🎉\nWhether it's fixing a bug 🐞, improving the docs 📝, or adding a new feature 🚀 — feel free to submit a pull request.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F53845714nf%2Fmalwarebazaar","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F53845714nf%2Fmalwarebazaar","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F53845714nf%2Fmalwarebazaar/lists"}