forked from mauricelambert/EntropyAnalysis
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathPKG-INFO
More file actions
127 lines (100 loc) · 4.65 KB
/
PKG-INFO
File metadata and controls
127 lines (100 loc) · 4.65 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
Metadata-Version: 2.1
Name: EntropyAnalysis
Version: 1.0.0
Summary: This package analyzes file entropy (shannon entropy) for forensic or malware analysis
Home-page: https://github.com/mauricelambert/EntropyAnalysis
Download-URL: https://mauricelambert.github.io/info/python/security/EntropyAnalysis.pyz
Author: Maurice Lambert
Author-email: Maurice Lambert <mauricelambert434@gmail.com>
Maintainer: Maurice Lambert
Maintainer-email: Maurice Lambert <mauricelambert434@gmail.com>
License: GPL-3.0 License
Project-URL: Github, https://github.com/mauricelambert/EntropyAnalysis
Project-URL: Documentation, https://mauricelambert.github.io/info/python/security/EntropyAnalysis.html
Project-URL: Python Executable, https://mauricelambert.github.io/info/python/security/EntropyAnalysis.pyz
Project-URL: Windows Executable, https://mauricelambert.github.io/info/python/security/EntropyAnalysis.exe
Keywords: entropy,entropy-analysis,malware-analysis,file-analysis,forensic,disk-analysis,security,cybersecurity
Platform: Windows
Platform: Linux
Platform: MacOS
Classifier: Topic :: System
Classifier: Topic :: Security
Classifier: Environment :: Console
Classifier: Topic :: System :: Shells
Classifier: Operating System :: POSIX
Classifier: Natural Language :: English
Classifier: Programming Language :: Python
Classifier: Intended Audience :: Developers
Classifier: Topic :: System :: System Shells
Classifier: Operating System :: MacOS :: MacOS X
Classifier: Programming Language :: Python :: 3.8
Classifier: Operating System :: Microsoft :: Windows
Classifier: Topic :: System :: Systems Administration
Classifier: Development Status :: 5 - Production/Stable
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: GNU General Public License v3 or later (GPLv3+)
Requires-Python: >=3.8
Description-Content-Type: text/markdown
License-File: LICENSE.txt
# EntropyAnalysis
## Description
This package analyzes file entropy (shannon entropy) for forensic or
malware analysis
## Requirements
This package require:
- python3
- python3 Standard Library
Optional:
- matplotlib (matplotlib is not installed by EntropyAnalysis, if you want GUI charts you should install it.)
## Installation
```bash
python3 -m pip install EntropyAnalysis
# The following line is optional (requirements for GUI charts)
python3 -m pip install matplotlib
```
```bash
git clone "https://github.com/mauricelambert/EntropyAnalysis.git"
cd "EntropyAnalysis"
python3 -m pip install .
```
## Usages
### Command line
```bash
EntropyAnalysis # Using CLI package executable
python3 -m EntropyAnalysis # Using python module
python3 EntropyAnalysis.pyz # Using python executable
EntropyAnalysis.exe # Using python Windows executable
EntropyAnalysis packed.exe
EntropyAnalysis -c packed.exe
EntropyAnalysis --all-characters packed.exe
EntropyAnalysis -f -C packed.exe
EntropyAnalysis -p 1024 packed.exe
EntropyAnalysis -o -k 4096 packed.exe
EntropyAnalysis -k 4096 -p 1024 packed.exe
EntropyAnalysis -u https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.so
```
### Python script
```python
from EntropyAnalysis import *
from urllib.request import urlopen
get_full_file_entropy(open('packed.exe', 'rb'))
charts_chunks_file_entropy(open('packed.exe', 'rb'))
charts_chunks_file_entropy(urlopen('https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.dll'), chunk_size=2048, part_size=512)
for score in get_chunks_file_entropy(open('packed.exe', 'rb')):
print(score)
for score in get_chunks_file_entropy(urlopen('https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.dll'), chunk_size=2048):
print(score)
print_chunks_file_entropy(open('packed.exe', 'rb'))
print_parts_chunks_file_entropy(open('packed.exe', 'rb'))
print_chunks_file_entropy(urlopen('https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.dll'), chunk_size=2048, colors=True)
print_parts_chunks_file_entropy(urlopen('https://github.com/mauricelambert/FastRC4/releases/download/v0.0.1/librc4.dll'), chunk_size=2048, part_size=512, colors=True)
```
## Links
- [Pypi](https://pypi.org/project/EntropyAnalysis)
- [Github](https://github.com/mauricelambert/EntropyAnalysis)
- [Documentation](https://mauricelambert.github.io/info/python/security/EntropyAnalysis.html)
- [Python executable](https://mauricelambert.github.io/info/python/security/EntropyAnalysis.pyz)
- [Python Windows executable](https://mauricelambert.github.io/info/python/security/EntropyAnalysis.exe)
## License
Licensed under the [GPL, version 3](https://www.gnu.org/licenses/).