Detect-It-Easy classifier for the Karton framework
June 29, 2021 ยท View on GitHub
A file type classifier based on Detect-It-East DIE.
Module's only goal is to attach DIE signatures, as tags, to samples submitted to mwdb-core
Consumes
{
"type": "sample",
"kind": "raw"
}, {
"type": "sample",
"stage": "recognized"
}
Produces
{
"type": "sample",
"stage": "analyzed"
}
Event tags examples
Setup and configuration
Dependencies
$ curl -s https://api.github.com/repos/horsicq/DIE-engine/releases/latest | grep browser_download_url | awk -F"\":" '{print \$2}' | tr -d "\"" | grep deb | wget -q --show-progress -i -
# e.g. die_3.02-20210605_amd64.deb
$ sudo dpkg -i die_3.02-20210605_amd64.deb
Modules install
$ git clone https://github.com/raw-data/karton-die-classifier/
$ cd karton-die-classifier/
$ python3 -m venv .venv
$ source .venv/bin/active
$ pip install .
$ karton-die-classifier