{"id":17688324,"url":"https://github.com/jonelo/dumahadaba","last_synced_at":"2025-03-30T21:28:28.468Z","repository":{"id":205514120,"uuid":"714403599","full_name":"jonelo/dumahadaba","owner":"jonelo","description":"Dump Malware Hash DataBase.","archived":false,"fork":false,"pushed_at":"2023-11-07T21:44:07.000Z","size":25,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-02-06T01:41:32.265Z","etag":null,"topics":["dumahadaba","jacksum","md5","python3"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jonelo.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-11-04T19:56:40.000Z","updated_at":"2023-11-04T22:02:38.000Z","dependencies_parsed_at":"2023-11-08T03:00:46.936Z","dependency_job_id":"21354269-33ef-49e4-b49e-29316028b9bc","html_url":"https://github.com/jonelo/dumahadaba","commit_stats":null,"previous_names":["jonelo/dumahadaba"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jonelo%2Fdumahadaba","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jonelo%2Fdumahadaba/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jonelo%2Fdumahadaba/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jonelo%2Fdumahadaba/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jonelo","download_url":"https://codeload.github.com/jonelo/dumahadaba/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246383097,"owners_count":20768341,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dumahadaba","jacksum","md5","python3"],"created_at":"2024-10-24T11:44:09.958Z","updated_at":"2025-03-30T21:28:28.436Z","avatar_url":"https://github.com/jonelo.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# dumahadaba\n\nDump Malware Hash DataBase. The script downloads the SQLite database from https://github.com/CYB3RMX/MalwareHashDB/ and it dumps the content (MD5 hash values of malware and their descriptions)\nto a GNU/Linux compatible text hash file so that it can be processed further by tools which are able to handle plain text hash value lists. The script also detects records in HashDB that have a hash value but no description (those will be fixed in the dump), and records that do not represent valid MD5 hash values (those will be ignored in the dump).\n\n## Dump the data base\n\n```\n$ ./dumahadaba.py\nThe file called ./HashDB is already there, do you want to download the lastest version from https://github.com/CYB3RMX/MalwareHashDB/raw/main/HashDB? [y]:\nCalculating hash of ./HashDB ...\nDownloading the latest database from https://github.com/CYB3RMX/MalwareHashDB/raw/main/HashDB and saving it to ./HashDB ...\nCalculating hash of ./HashDB ...\nThis is the same database that we have had previously.\nThe MalwareHashDB.dump.md5 is already there.\nDo you want to regenerate the hash file? [y]:\nGenerating the hash file MalwareHashDB.dump.md5, please wait ...\nWarning: There is no description for hash value c26d10bb3f1f2471829499da20f35c64, I set the value to \"\u003cmalware, but no description\u003e\".\n\n0 invalid records have been ignored.\n1 record has been fixed.\n354976 valid MD5 records have been written to MalwareHashDB.dump.md5.\n```\n\n## Use the dump\n\nYou can use the text based data base dump to find malware on your devices by using tools like [Jacksum](https://github.com/jonelo/Jacksum) which is able to identify files by hash value lists.\n\n```\n$ jacksum -a md5 --wanted-list MalwareHashDB.dump.md5 --style linux .\nJacksum: Info: Option --compat/-style has been set, setting implicitly -a md5 -E hex -F \"#ESCAPETAG#CHECKSUM{hex} *#FILENAME\", stdin-name=-\n\nJacksum: total lines in check file: 336587\nJacksum: improperly formatted lines in check file: 0\nJacksum: properly formatted lines in check file: 336587\nJacksum: ignored lines (empty lines and comments): 0\nJacksum: correctness of check file: 100.00 %\n\nJacksum: total number of wanted hashes: 336587\nJacksum: files matching wanted hashes (MATCH): 0\nJacksum: files not matching wanted hashes (NO MATCH): 5\n\nJacksum: total files read successfully: 5\nJacksum: total bytes read: 60637434\nJacksum: total bytes read (human readable): 57 MiB, 848 KiB, 250 bytes\nJacksum: total file read errors: 0\n\nJacksum: elapsed time: 7 s, 153 ms\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjonelo%2Fdumahadaba","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjonelo%2Fdumahadaba","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjonelo%2Fdumahadaba/lists"}