def __init__(self):
self.parser = argparse.ArgumentParser(description='Sentinel scans for and reports the presence of malware-related and malware-modified files.')
md5Generator = Md5Generator()
fileSystemListGeneratorProvider = FileSystemListGeneratorProvider()
iocReader = IocReader(Main.ioc_file_path)
self.fileSystemScanner = Md5FileSystemScanner(md5Generator, fileSystemListGeneratorProvider, iocReader, logger)
self.resultsWriter = ResultsWriter(logger)
def __init__(self):
self.parser = argparse.ArgumentParser(description='Sentinel scans for and reports the presence of malware-related and malware-modified files.')
md5Generator = Md5Generator()
fileSystemListGeneratorProvider = FileSystemListGeneratorProvider()
iocReader = IocReader(Main.ioc_hashes_file)
self.fileSystemScanner = Md5FileSystemScanner(md5Generator, fileSystemListGeneratorProvider, iocReader, logger)
self.resultsWriter = ResultsWriter(logger)
class Main(object):
ioc_hashes_file = 'ioc_files/hacking_team_dll_hashes.ioc'
def __init__(self):
self.parser = argparse.ArgumentParser(description='Sentinel scans for and reports the presence of malware-related and malware-modified files.')
md5Generator = Md5Generator()
fileSystemListGeneratorProvider = FileSystemListGeneratorProvider()
iocReader = IocReader(Main.ioc_hashes_file)
self.fileSystemScanner = Md5FileSystemScanner(md5Generator, fileSystemListGeneratorProvider, iocReader, logger)
self.resultsWriter = ResultsWriter(logger)
def execute(self):
app.process_arguments()
app.print_logo()
logger.info('')
raw_input('Press enter to continue...')
logger.info('')
app.print_legal()
logger.info('')
# should_update_ioc_bundle_and_contents = (raw_input('Download updated OpenIOC files? [Y/n] ').lower() == 'y')
# if should_update_ioc_bundle_and_contents:
# ioc_bundle_downloader = IocBundleDownloader('http://**********/milano_openioc_bundle.tar.gz')
# ioc_bundle_downloader.conditionally_update_bundle_and_contents()
results = self.fileSystemScanner.scan_file_system()
self.resultsWriter.write_results(results)
logger.info('')
logger.info('Results will be printed to ./last_scan_results.txt')
logger.info('')
raw_input('Press enter to exit...')
def process_arguments(self):
args = self.parser.parse_args()
def print_from_file(self, file_path, prefix=''):
f = open(file_path)
for line in f:
logger.info(prefix + line.rstrip())
f.close()
def print_logo(self):
logger.info('===============================================================================')
self.print_from_file('logo.txt')
logger.info('')
self.print_from_file('version.txt', ' ' * 32)
logger.info('')
logger.info(' Powered by Rook Security')
logger.info('===============================================================================')
logger.info('')
logger.info('Copyright 2015 Rook Security, LLC. All rights reserved.')
def print_legal(self):
self.print_from_file('LEGAL.txt')
class Main(object):
ioc_file_path = 'openioc/'
def __init__(self):
self.parser = argparse.ArgumentParser(description='Sentinel scans for and reports the presence of malware-related and malware-modified files.')
md5Generator = Md5Generator()
fileSystemListGeneratorProvider = FileSystemListGeneratorProvider()
iocReader = IocReader(Main.ioc_file_path)
self.fileSystemScanner = Md5FileSystemScanner(md5Generator, fileSystemListGeneratorProvider, iocReader, logger)
self.resultsWriter = ResultsWriter(logger)
def execute(self):
app.process_arguments()
app.print_logo()
logger.info('')
raw_input('Press enter to continue...')
logger.info('')
app.print_legal()
logger.info('')
# should_update_ioc_bundle_and_contents = (raw_input('Download updated OpenIOC files? [Y/n] ').lower() == 'y')
# if should_update_ioc_bundle_and_contents:
# ioc_bundle_downloader = IocBundleDownloader('http://**********/milano_openioc_bundle.tar.gz')
# ioc_bundle_downloader.conditionally_update_bundle_and_contents()
results = self.fileSystemScanner.scan_file_system()
self.resultsWriter.write_results(results)
logger.info('')
logger.info('Results will be printed to ./last_scan_results.txt')
logger.info('')
raw_input('Press enter to exit...')
def process_arguments(self):
args = self.parser.parse_args()
def print_from_file(self, file_path, prefix=''):
f = open(file_path)
for line in f:
logger.info(prefix + line.rstrip())
f.close()
def print_logo(self):
logger.info('===============================================================================')
self.print_from_file('logo.txt')
logger.info('')
self.print_from_file('version.txt', ' ' * 32)
logger.info('')
logger.info(' Powered by Sameer Rathod')
logger.info('===============================================================================')
logger.info('')
# logger.info('Copyright 2015 Rook Security, LLC. All rights reserved.')
def print_legal(self):
self.print_from_file('LEGAL.txt')