{"id":13387638,"url":"https://github.com/horsicq/detect-it-easy","last_synced_at":"2025-05-12T13:14:13.899Z","repository":{"id":17583546,"uuid":"20387062","full_name":"horsicq/Detect-It-Easy","owner":"horsicq","description":"Program for determining types of files for Windows, Linux and MacOS.","archived":false,"fork":false,"pushed_at":"2025-05-08T09:09:39.000Z","size":15618,"stargazers_count":8627,"open_issues_count":29,"forks_count":794,"subscribers_count":178,"default_branch":"master","last_synced_at":"2025-05-08T09:38:07.358Z","etag":null,"topics":["binary-analysis","debugger","detect","detector","disassembler","elf","entropy","hacktoberfest","hacktoberfest2023","mach-o","macho","malware-analysis","malware-research","packer","pentest","program-analysis","reverse-engineering","scanner","static-analysis","unpacker"],"latest_commit_sha":null,"homepage":"http://ntinfo.biz","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/horsicq.png","metadata":{"files":{"readme":"README.md","changelog":"changelog.txt","contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null},"funding":{"github":"horsicq"}},"created_at":"2014-06-01T21:37:32.000Z","updated_at":"2025-05-08T09:09:43.000Z","dependencies_parsed_at":"2023-01-14T13:00:41.711Z","dependency_job_id":"4d943fab-8ef7-466f-957f-f206ca227d4a","html_url":"https://github.com/horsicq/Detect-It-Easy","commit_stats":{"total_commits":1886,"total_committers":47,"mean_commits":40.12765957446808,"dds":0.4273594909862142,"last_synced_commit":"0f5093f1d57409171ad65fc7008a41d663f53ae8"},"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/horsicq%2FDetect-It-Easy","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/horsicq%2FDetect-It-Easy/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/horsicq%2FDetect-It-Easy/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/horsicq%2FDetect-It-Easy/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/horsicq","download_url":"https://codeload.github.com/horsicq/Detect-It-Easy/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253745196,"owners_count":21957319,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["binary-analysis","debugger","detect","detector","disassembler","elf","entropy","hacktoberfest","hacktoberfest2023","mach-o","macho","malware-analysis","malware-research","packer","pentest","program-analysis","reverse-engineering","scanner","static-analysis","unpacker"],"created_at":"2024-07-30T12:01:25.587Z","updated_at":"2025-05-12T13:14:13.866Z","avatar_url":"https://github.com/horsicq.png","language":"JavaScript","funding_links":["https://github.com/sponsors/horsicq","https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick\u0026hosted_button_id=NF3FBD3KHMXDN"],"categories":["\u003ca id=\"06fccfcc4faa7da54d572c10ef29b42e\"\u003e\u003c/a\u003e移动\u0026\u0026Mobile","\u003ca id=\"58cd9084afafd3cd293564c1d615dd7f\"\u003e\u003c/a\u003e工具"],"sub_categories":["\u003ca id=\"dbde77352aac39ee710d3150a921bcad\"\u003e\u003c/a\u003eiOS\u0026\u0026MacOS\u0026\u0026iPhone\u0026\u0026iPad\u0026\u0026iWatch","\u003ca id=\"d0108e91e6863289f89084ff09df39d0\"\u003e\u003c/a\u003e新添加的"],"readme":"# 🔍 Detect It Easy (DiE)\n\n[![Donate](https://img.shields.io/badge/Donate-PayPal-green.svg)](https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick\u0026hosted_button_id=NF3FBD3KHMXDN)\n[![GitHub tag (latest SemVer)](https://img.shields.io/github/tag/horsicq/DIE-engine.svg)](http://ntinfo.biz)\n[![GitHub All Releases](https://img.shields.io/github/downloads/horsicq/DIE-engine/total.svg)](http://ntinfo.biz)\n[![gitlocalized ](https://gitlocalize.com/repo/4736/whole_project/badge.svg)](https://github.com/horsicq/XTranslation)\n\n**Detect It Easy (DiE)** is a powerful tool for file type identification, popular among **malware analysts**, **cybersecurity experts**, and **reverse engineers** worldwide. Supporting both **signature-based** and **heuristic analysis**, DiE enables efficient file inspections across a broad range of platforms, including **Windows, Linux, and MacOS**. Its adaptable, script-driven detection architecture makes it one of the most versatile tools in the field, with a comprehensive list of supported OS images.\n\n## 🚀 Getting Started\n\n- **[💎 Download release](https://github.com/horsicq/DIE-engine/releases)**\n- **[🧪 Download dev/beta](https://github.com/horsicq/DIE-engine/releases/tag/Beta)**\n- **[🚀 DIE API Library (for Developers)](https://github.com/horsicq/die_library)**\n- [📋 Changelog](https://github.com/horsicq/Detect-It-Easy/blob/master/changelog.txt)\n- [💬 Contribute to Translations](https://github.com/horsicq/XTranslation)\n\n![Screenshot](docs/1.png)\n\n## 💡 Why Use Detect It Easy?\n\nDetect It Easy’s **flexible signature system** and **scripting capabilities** make it an essential tool for **malware analysis** and **digital forensics**. With traditional static analyzers often limited in scope and prone to false positives, DiE’s customizable design enables precise integration of new detection logic, ensuring reliable results across diverse file types.\n\n![Screenshot](docs/2.png)\n\n### Key Advantages:\n\n- **Flexible Signature Management**: Easily create, modify, and optimize signatures.\n- **Cross-Platform Support**: Runs on Windows, Linux, and MacOS.\n- **Minimal False Positives**: Combined signature and heuristic analysis ensures high detection accuracy.\n\n## 📄 Supported File Types\n\nDetect It Easy supports a wide range of executable and archive types, including:\n\n- **PE** (Portable Executable format for Windows)\n- **ELF** (Executable and Linkable Format for Linux)\n- **APK** (Android Application Package)\n- **IPA** (iOS Application Package)\n- **JAR** (Java Archive)\n- **ZIP** (Compressed archives)\n- **DEX** (Dalvik Executable for Android)\n- **MS-DOS** (MS-DOS executable files)\n- **COM** (Simple executable format for DOS)\n- **LE/LX** (Linear Executable for OS/2)\n- **MACH** (Mach-O files for MacOS)\n- **NPM** (JavaScript packages)\n- **Amiga** (Executable format for Amiga computers)\n- **Binary** (Other unclassified files)\n\nUnknown formats undergo heuristic analysis, providing identification for both known and unrecognized files.\n\n## 🔑 Key Features\n\n- **Flexible Signature Management**: Define or modify detection signatures.\n- **Scripted Detection**: Use a JavaScript-like scripting language for custom detection algorithms.\n- **Cross-Platform Compatibility**: Available for Windows, Linux, and MacOS.\n- **Reduced False Positives**: Combines signature and heuristic scanning for accuracy.\n\n## 📥 Installation\n\n### 📦 Install via Package Managers\n\n- **Windows**: [Chocolatey](https://community.chocolatey.org/packages/die) \n- **Linux**:\n  - **Parrot OS**: Package name `detect-it-easy`\n  - **Arch Linux**: AUR package [detect-it-easy-git](https://aur.archlinux.org/packages/detect-it-easy-git/)\n  - **openSUSE**: [OBS](https://build.opensuse.org/package/show/home:mnhauke/detect-it-easy)\n  - **REMnux**: Malware analysis distribution\n\n\u003e [!NOTE]\n\u003e Use **Detect It Easy** bot via **Telegram** to quickly check files: [**@detectiteasy_bot**](https://t.me/detectiteasy_bot)\n\n### ⚙️ Build from Source\n\nSee the [BUILD.md](docs/BUILD.md) for detailed instructions.\n\n### 🐳 Docker Installation\n\nRun DiE in a Docker container:\n\n```bash\ngit clone --recursive https://github.com/horsicq/Detect-It-Easy\ncd Detect-It-Easy/\ndocker build . -t horsicq:diec\n```\n\n## 🖥️ Usage\n\nDetect It Easy offers three versions:\n\n- **die** - Graphical interface.\n- **diec** - Command-line version for batch processing.\n- **diel** - Lightweight GUI version.\n\nFor detailed usage, refer to the [RUN.md](docs/RUN.md).\n\n### 🔎 Example Use Cases\n\n- **Malware Analysis**: Identify file types, packers, or protections.\n- **Security Audits**: Determine executable file types and potential security risks.\n- **Software Forensics**: Inspect software components and validate compliance.\n\n## 🏆 Special Thanks\n\nThanks to all contributors!\n\n\u003ca href=\"https://github.com/horsicq/Detect-It-Easy/graphs/contributors\"\u003e\n    \u003cimg src=\"https://contrib.rocks/image?repo=horsicq/Detect-It-Easy\" /\u003e\n\u003c/a\u003e\n\nThanks to [PELock Software Protection \u0026 Reverse Engineering](https://www.pelock.com)\n\n![Mascot](mascots/logo.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhorsicq%2Fdetect-it-easy","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhorsicq%2Fdetect-it-easy","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhorsicq%2Fdetect-it-easy/lists"}