{"id":159256,"url":"https://github.com/uppusaikiran/generic-parser","last_synced_at":"2025-07-13T17:31:38.429Z","repository":{"id":245331356,"uuid":"104569410","full_name":"uppusaikiran/generic-parser","owner":"uppusaikiran","description":"A Single Library Parser to extract meta information,static analysis and detect macros within the files.","archived":false,"fork":false,"pushed_at":"2018-09-14T12:38:27.000Z","size":1450,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2024-11-22T13:36:32.407Z","etag":null,"topics":["dynamic-analysis","libmagic","machine-learning","malware-analysis","mime","office-files","pdf-parsing","pe-executable","python","rar","reverse-engineering","static-analysis","zip"],"latest_commit_sha":null,"homepage":"https://uppusaikiran.github.io/malware/generic-file-parser/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/uppusaikiran.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2017-09-23T13:26:57.000Z","updated_at":"2024-09-06T13:52:29.000Z","dependencies_parsed_at":"2024-06-21T13:27:19.639Z","dependency_job_id":"a249641d-dea7-4612-a04f-76b9e6b05be5","html_url":"https://github.com/uppusaikiran/generic-parser","commit_stats":null,"previous_names":["uppusaikiran/generic-parser"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/uppusaikiran/generic-parser","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uppusaikiran%2Fgeneric-parser","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uppusaikiran%2Fgeneric-parser/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uppusaikiran%2Fgeneric-parser/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uppusaikiran%2Fgeneric-parser/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/uppusaikiran","download_url":"https://codeload.github.com/uppusaikiran/generic-parser/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/uppusaikiran%2Fgeneric-parser/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":265178756,"owners_count":23723329,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["dynamic-analysis","libmagic","machine-learning","malware-analysis","mime","office-files","pdf-parsing","pe-executable","python","rar","reverse-engineering","static-analysis","zip"],"created_at":"2024-01-06T16:40:17.318Z","updated_at":"2025-07-13T17:31:37.719Z","avatar_url":"https://github.com/uppusaikiran.png","language":"Python","funding_links":[],"categories":["Tools","Detection and Classification"],"sub_categories":["Other Resources"],"readme":"# Generic Parser for Analyzing Malware Files to Detect Suspicious Behaviour.\n\nA Single Library Parser to extract meta information,static analysis and detect macros within the files.\n\n# Usage:\n\n## PreRequsite\n1. Clone the Repo\n2. Create a virutalenv\n```\nvirtualenv pyenv\n```\n3. Install the requirements.\n```\npip install -r requirements.txt\n```\n### Script Usage\n\n```\n(pyenv) admin@cuckoo:~/generic-parser$ python app.py -h\nusage: app.py [-h] -f PATH [-s STORE] -y YARA -e EXTRACT [--version]\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -f PATH, --path PATH  File Absolute Path\n  -s STORE, --store STORE\n                        Store to DB\n  -y YARA, --yara YARA  Apply Yara Matcher\n  -e EXTRACT, --extract EXTRACT\n                        Extract Features\n  --version             show program's version number and exit\n\n```\n1. PATH  : This should point to the path of the malware file which you want to analyze.\n2. STORE : Enable this flag if you want to store in a database.\n3. YARA  : Enable this flag to apply yara to match for suspicious indicators in the file.\n4. version : Shows the version of the tool.\n\n### Features:\n\n1. Ability to Identify the Decomposition module selected based on the mime-type.\n2. Apply PDF based decomposition to extract features from the pdf file.\n3. Apply Office based decomposition to extract features of office files.\n4. Web Based files are decomposed to get interesting strings etc.\n5. Yara is applied on the entire file to get interesting matches which can help in identifying suspicious behaviour.\n\n### Sample UseCases\n\n - Please refer to [USECASES](USECASES.md)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fuppusaikiran%2Fgeneric-parser","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fuppusaikiran%2Fgeneric-parser","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fuppusaikiran%2Fgeneric-parser/lists"}