def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
global count
global count2
count = 1
try:
list = page.find(text='Dropped File').previous.previous.parent.findAll('p')
except:
raise MaltegoException('No Dropped Files')
for item in list:
count2 = 1
if count % 2 == 1:
split = item.findAll('a')
for s in split:
if count2 % 2 == 1:
pass
else:
e = Hash(s.text)
name = s.previous.previous.previous.text
e += Field('Filename', name)
response += e
count2+=1
elif count % 2 == 0:
pass
count+=1
return response
def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
global count
global count2
count = 1
try:
list = page.find(
text='Dropped File').previous.previous.parent.findAll('p')
except:
raise MaltegoException('No Dropped Files')
for item in list:
count2 = 1
if count % 2 == 1:
split = item.findAll('a')
for s in split:
if count2 % 2 == 1:
pass
else:
e = Hash(s.text)
name = s.previous.previous.previous.text
e += Field('Filename', name)
response += e
count2 += 1
elif count % 2 == 0:
pass
count += 1
return response
def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
try:
list = page.find(text='File: ').findNext('b')
except:
raise MaltegoException('No filename')
if list.text != '':
response += Filename(list.text)
return response
def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
try:
list = page.find(text='Mutex Created').previous.previous.parent.findAll('p')
except:
raise MaltegoException('No Mutexes Created')
for item in list:
if item.text != 'none':
response += Phrase(item.text)
return response
def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
try:
list = page.find(text='Registry Item Created').previous.previous.parent.findAll('p')
except:
raise MaltegoException('No Registry Items Created')
for item in list:
if item.text != 'none':
response += RegistryEntry(item.text)
return response
def dotransform(request, response):
#Build the request
type = 'hash'
page = build(request.value, type)
try:
list = page.find(text='PCAP Raw DNS Queries').previous.previous.parent.findAll('p')
except:
raise MaltegoException('No DNS Queries')
for item in list:
if item.text != 'none':
response += Domain(item.text)
return response
def dotransform(request, response):
#Build the request
type = 'name'
page = build(request.value, type)
try:
list = page.findAll(text='MD5:')
except:
raise MaltegoException('No DNS Queries')
for item in list:
if item != 'none':
md5 = Hash(item.next.next)
name = item.previous.previous.previous
md5 += Field('Filename', name)
response += md5
return response
def dotransform(request, response):
#Build the request
type = 'name'
page = build(request.value, type)
try:
list = page.findAll(text='MD5:')
except:
raise MaltegoException('No DNS Queries')
for item in list:
if item != 'none':
md5 = Hash(item.next.next)
name = item.previous.previous.previous
md5 += Field('Filename', name)
response += md5
return response
