Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/kevthehermit/PasteHunter
Scanning pastebin with yara rules
https://github.com/kevthehermit/PasteHunter
Last synced: 29 days ago
JSON representation
Scanning pastebin with yara rules
- Host: GitHub
- URL: https://github.com/kevthehermit/PasteHunter
- Owner: kevthehermit
- License: gpl-3.0
- Created: 2017-09-02T19:21:56.000Z (over 7 years ago)
- Default Branch: master
- Last Pushed: 2024-06-18T20:10:35.000Z (6 months ago)
- Last Synced: 2024-11-11T17:49:17.861Z (about 1 month ago)
- Language: Python
- Homepage:
- Size: 288 KB
- Stars: 1,064
- Watchers: 67
- Forks: 228
- Open Issues: 17
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
Awesome Lists containing this project
- awesome-hacking-lists - kevthehermit/PasteHunter - Scanning pastebin with yara rules (Python)
README
# PasteHunter
PasteHunter is a python3 application that is designed to query a collection of sites that host publicly pasted data.
For all the pastes it finds it scans the raw contents against a series of Yara rules looking for information that can be used
by an organisation or a researcher.## Setup
For setup instructions please see the official documentation https://pastehunter.readthedocs.io/en/latest/installation.html[![PyPI version](https://badge.fury.io/py/pastehunter.svg)](https://badge.fury.io/py/pastehunter)
[![Build Status](https://travis-ci.org/kevthehermit/PasteHunter.svg?branch=master)](https://travis-ci.org/kevthehermit/PasteHunter)
## Supported Inputs
Pastehunter currently has support for the following sites:
- pastebin.com
- gist.github.com # Gists
- github.com # Public commit activity feed
- slexy.org
- stackexchange # There are about 176!## Supported Outputs
Pastehunter supports several output modules:
- dump to ElasticSearch DB (default).
- Email alerts (SMTP).
- Slack Channel notifications.
- Dump to JSON file.
- Dump to CSV file.
- Send to syslog.
- POST to URL## Supported Sandboxes
Pastehunter supports several sandboxes that decoded data can be sent to:
- Cuckoo
- ViperFor examples of data discovered using pastehunter check out my posts https://techanarchy.net/blog/hunting-pastebin-with-pastehunter and https://techanarchy.net/blog/pastehunter-the-results