https://github.com/blwhit/tripwire

Forensics tool to monitor and snapshot temporary files created by malware
https://github.com/blwhit/tripwire

Last synced: 6 days ago
JSON representation

Forensics tool to monitor and snapshot temporary files created by malware

Host: GitHub
URL: https://github.com/blwhit/tripwire
Owner: blwhit
Created: 2025-04-26T15:45:53.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2025-04-26T16:10:08.000Z (about 1 year ago)
Last Synced: 2025-04-26T17:23:13.823Z (about 1 year ago)
Language: Python
Size: 6.24 MB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Tripwire

A Python-based digital forensics tool for **real-time detection/snapshotting of temporary files** created by malware.
Ideal for **dynamic analysis** of fileless malware, and monitoring suspicious file events during runtime.

---

### Features:
- Monitor multiple file system paths.
- Specify file extensions to detect.
- Real-time monitoring **0.1 second delay**.
- Exclude specific file types from monitoring.

---

### Usage:

#### Executable (Recommended)
```bash
.\Tripwire.exe
```

#### Python
```bash
pip install watchdog colorama

git clone https://github.com/blwhit/Tripwire.git

python Tripwire.py
```

### Example:

![Tripwire in Action](https://github.com/user-attachments/assets/265b1abd-49c2-4613-95af-aa5df3883e17)

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/blwhit/tripwire

Awesome Lists containing this project

README