├── README.txt ├── sandyfiles.sql ├── src ├── __init__.py ├── attribution.py ├── create_html_template.py ├── daemon-example.py ├── daemonn.py ├── execute.py ├── extract_domain.py ├── hachoir.py ├── java_analysis.py ├── java_malware_sig.py ├── msl.py ├── mthread.py ├── mthreadbk.py ├── mysqlstuffs.py ├── proxy │ ├── .svn │ │ ├── entries │ │ ├── format │ │ ├── pristine │ │ │ ├── 98 │ │ │ │ └── 98f88925b98865cda184c1f70daeb37085d70bcd.svn-base │ │ │ └── b6 │ │ │ │ └── b660d0c3899eac087bf45a00a1be1bc292fc15e7.svn-base │ │ └── wc.db │ ├── __init__.py │ ├── build │ │ └── http-parser │ │ │ ├── LICENSE │ │ │ ├── Makefile.ext │ │ │ ├── NOTICE │ │ │ ├── PKG-INFO │ │ │ ├── README.rst │ │ │ ├── THANKS │ │ │ ├── TODO.md │ │ │ ├── build │ │ │ ├── lib.linux-i686-2.7 │ │ │ │ └── http_parser │ │ │ │ │ ├── __init__.py │ │ │ │ │ ├── _socketio.py │ │ │ │ │ ├── http.py │ │ │ │ │ ├── pyparser.py │ │ │ │ │ ├── reader.py │ │ │ │ │ └── util.py │ │ │ └── temp.linux-i686-2.7 │ │ │ │ └── http_parser │ │ │ │ └── http_parser.o │ │ │ ├── examples │ │ │ ├── httpparser.py │ │ │ ├── httpparser_from_file.py │ │ │ └── httpstream.py │ │ │ ├── http_parser │ │ │ ├── __init__.py │ │ │ ├── _socketio.py │ │ │ ├── http.py │ │ │ ├── http_parser.c │ │ │ ├── http_parser.gyp │ │ │ ├── http_parser.h │ │ │ ├── parser.c │ │ │ ├── parser.pyx │ │ │ ├── parser.so │ │ │ ├── pyparser.py │ │ │ ├── pyversion_compat.h │ │ │ ├── reader.py │ │ │ └── util.py │ │ │ ├── pip-egg-info │ │ │ └── http_parser.egg-info │ │ │ │ └── PKG-INFO │ │ │ └── setup.py │ ├── http-parser │ │ ├── .travis.yml │ │ ├── LICENSE │ │ ├── MANIFEST.in │ │ ├── Makefile │ │ ├── NOTICE │ │ ├── README.rst │ │ ├── THANKS │ │ ├── TODO.md │ │ ├── build │ │ │ ├── lib.linux-i686-2.7 │ │ │ │ └── http_parser │ │ │ │ │ ├── __init__.py │ │ │ │ │ ├── _socketio.py │ │ │ │ │ ├── http.py │ │ │ │ │ ├── parser.so │ │ │ │ │ ├── pyparser.py │ │ │ │ │ ├── reader.py │ │ │ │ │ └── util.py │ │ │ └── temp.linux-i686-2.7 │ │ │ │ └── http_parser │ │ │ │ ├── http_parser.o │ │ │ │ └── parser.o │ │ ├── debian │ │ │ ├── changelog │ │ │ ├── clean │ │ │ ├── compat │ │ │ ├── control │ │ │ ├── copyright │ │ │ ├── python-http-parser.preinst │ │ │ ├── pyversions │ │ │ ├── rules │ │ │ ├── source │ │ │ │ └── format │ │ │ └── watch │ │ ├── dist │ │ │ └── http_parser-0.8.1-py2.7-linux-i686.egg │ │ ├── examples │ │ │ ├── httpparser.py │ │ │ ├── httpparser_from_file.py │ │ │ └── httpstream.py │ │ ├── http_parser.egg-info │ │ │ └── PKG-INFO │ │ ├── http_parser │ │ │ ├── __init__.py │ │ │ ├── _socketio.py │ │ │ ├── http.py │ │ │ ├── http_parser.c │ │ │ ├── http_parser.gyp │ │ │ ├── http_parser.h │ │ │ ├── parser.c │ │ │ ├── parser.pyx │ │ │ ├── parser.so │ │ │ ├── pyparser.py │ │ │ ├── pyversion_compat.h │ │ │ ├── reader.py │ │ │ └── util.py │ │ ├── setup.py │ │ ├── testing │ │ │ └── test_parse_from_stream.py │ │ └── tox.ini │ ├── httpparser.py │ ├── msqlhttp.py │ ├── multiproc.py │ ├── multiproc_ff.py │ ├── multiproc_java.py │ ├── multiproc_links.py │ ├── multiproc_links_ie.py │ ├── parse.py │ ├── proxy.py │ ├── proxy_links.py │ ├── pysph.py │ ├── run.sh │ ├── run_mprocess.py │ ├── run_mprocess_2.py │ ├── run_mprocess_ff.py │ ├── run_mprocess_ff_1.py │ ├── run_mprocess_ie.py │ ├── sele.py │ ├── sele_ff.py │ ├── sele_ie.py │ ├── sele_java.py │ └── yara_scan_links.py ├── readme ├── samples │ ├── __init__.py │ ├── build │ │ └── readme │ ├── dfiles │ │ └── readme │ ├── jfiles │ │ ├── binaries │ │ │ └── readme │ │ ├── decompiled │ │ │ └── readme │ │ └── extracted │ │ │ └── readme │ ├── o │ │ └── readme │ └── run.py ├── sched.py ├── timeout.py ├── yara_scan.py └── ziplib_test.py └── yara-ctypes ├── .travis.yml ├── MANIFEST.in ├── README.rst ├── build └── lib.linux-x86_64-2.7 │ └── yara │ ├── __init__.py │ ├── libyara_wrapper.py │ ├── rules.py │ ├── rules │ ├── example │ │ └── packer_rules.yar │ └── hbgary │ │ ├── antidebug.yar │ │ ├── compiler.yar │ │ ├── compression.yar │ │ ├── fingerprint.yar │ │ ├── integerparsing.yar │ │ ├── libs.yar │ │ ├── microsoft.yar │ │ └── sockets.yar │ ├── scan.py │ └── version.py ├── dist └── yara-1.6.1-py2.7.egg ├── distribute-0.6.25-py2.7.egg ├── distribute-0.6.25.tar.gz ├── distribute_setup.py ├── docs ├── Makefile ├── make.bat └── source │ ├── conf.py │ ├── howto │ ├── build.rst │ ├── install.rst │ └── scan.rst │ ├── index.rst │ └── yara │ ├── libyara_wrapper.rst │ ├── rules.rst │ └── scan.rst ├── libs ├── ELF │ ├── 32bit │ │ └── libyara.so │ └── 64bit │ │ └── libyara.so └── WindowsPE │ ├── 32bit │ └── libyara.dll │ └── 64bit │ └── libyara.dll ├── setup.py ├── tests ├── __init__.py ├── broken_rules.yar ├── test_libyara_wrapper.py └── test_rules.py ├── yara.egg-info ├── PKG-INFO └── not-zip-safe └── yara ├── __init__.py ├── libyara_wrapper.py ├── rules.py ├── rules ├── browser │ ├── .exploits.yar.kate-swp │ ├── exploit_kits.yar │ └── exploits.yar ├── clam_av │ ├── clam_av.yar │ └── test.yar ├── comment_crew │ └── comment_crew.yar ├── example │ └── packer_rules.yar ├── hbgary │ ├── antidebug.yar │ ├── compiler.yar │ ├── compression.yar │ ├── fingerprint.yar │ ├── integerparsing.yar │ ├── libs.yar │ ├── microsoft.yar │ └── sockets.yar ├── ie │ └── exploit.yar ├── java │ └── exploit.yar ├── jsclassifier.yar ├── jsclassifier │ └── plugindetect.yar ├── jsunpack │ └── jsunpack.yar ├── urlclassifier.yar └── urlclassifier │ ├── blackhole.yar │ ├── cool.yar │ ├── crimeboss.yar │ ├── critxpack.yar │ ├── fiesta.yar │ ├── g01pack.yar │ ├── impact.yar │ ├── neutrino.yar │ ├── nuclear.yar │ ├── popads.yar │ ├── redkit.yar │ ├── safepack.yar │ ├── sakura.yar │ ├── sofosfo.yar │ ├── styx.yar │ ├── sweetorange.yar │ └── tds.yar ├── scan.py └── version.py /README.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/README.txt -------------------------------------------------------------------------------- /sandyfiles.sql: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/sandyfiles.sql -------------------------------------------------------------------------------- /src/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/__init__.py -------------------------------------------------------------------------------- /src/attribution.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/attribution.py -------------------------------------------------------------------------------- /src/create_html_template.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/create_html_template.py -------------------------------------------------------------------------------- /src/daemon-example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/daemon-example.py -------------------------------------------------------------------------------- /src/daemonn.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/daemonn.py -------------------------------------------------------------------------------- /src/execute.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/execute.py -------------------------------------------------------------------------------- /src/extract_domain.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/extract_domain.py -------------------------------------------------------------------------------- /src/hachoir.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/hachoir.py -------------------------------------------------------------------------------- /src/java_analysis.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/java_analysis.py -------------------------------------------------------------------------------- /src/java_malware_sig.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/java_malware_sig.py -------------------------------------------------------------------------------- /src/msl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/msl.py -------------------------------------------------------------------------------- /src/mthread.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/mthread.py -------------------------------------------------------------------------------- /src/mthreadbk.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/mthreadbk.py -------------------------------------------------------------------------------- /src/mysqlstuffs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/mysqlstuffs.py -------------------------------------------------------------------------------- /src/proxy/.svn/entries: -------------------------------------------------------------------------------- 1 | 12 2 | -------------------------------------------------------------------------------- /src/proxy/.svn/format: -------------------------------------------------------------------------------- 1 | 12 2 | -------------------------------------------------------------------------------- /src/proxy/.svn/pristine/98/98f88925b98865cda184c1f70daeb37085d70bcd.svn-base: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/.svn/pristine/98/98f88925b98865cda184c1f70daeb37085d70bcd.svn-base -------------------------------------------------------------------------------- /src/proxy/.svn/pristine/b6/b660d0c3899eac087bf45a00a1be1bc292fc15e7.svn-base: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/.svn/pristine/b6/b660d0c3899eac087bf45a00a1be1bc292fc15e7.svn-base -------------------------------------------------------------------------------- /src/proxy/.svn/wc.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/.svn/wc.db -------------------------------------------------------------------------------- /src/proxy/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/__init__.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/LICENSE -------------------------------------------------------------------------------- /src/proxy/build/http-parser/Makefile.ext: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/Makefile.ext -------------------------------------------------------------------------------- /src/proxy/build/http-parser/NOTICE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/NOTICE -------------------------------------------------------------------------------- /src/proxy/build/http-parser/PKG-INFO: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/PKG-INFO -------------------------------------------------------------------------------- /src/proxy/build/http-parser/README.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/README.rst -------------------------------------------------------------------------------- /src/proxy/build/http-parser/THANKS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/THANKS -------------------------------------------------------------------------------- /src/proxy/build/http-parser/TODO.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/TODO.md -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/__init__.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/_socketio.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/_socketio.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/http.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/pyparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/pyparser.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/reader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/reader.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/util.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/lib.linux-i686-2.7/http_parser/util.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/build/temp.linux-i686-2.7/http_parser/http_parser.o: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/build/temp.linux-i686-2.7/http_parser/http_parser.o -------------------------------------------------------------------------------- /src/proxy/build/http-parser/examples/httpparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/examples/httpparser.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/examples/httpparser_from_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/examples/httpparser_from_file.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/examples/httpstream.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/examples/httpstream.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/__init__.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/_socketio.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/_socketio.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/http.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/http_parser.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/http_parser.c -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/http_parser.gyp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/http_parser.gyp -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/http_parser.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/http_parser.h -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/parser.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/parser.c -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/parser.pyx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/parser.pyx -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/parser.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/parser.so -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/pyparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/pyparser.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/pyversion_compat.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/pyversion_compat.h -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/reader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/reader.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/http_parser/util.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/http_parser/util.py -------------------------------------------------------------------------------- /src/proxy/build/http-parser/pip-egg-info/http_parser.egg-info/PKG-INFO: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/pip-egg-info/http_parser.egg-info/PKG-INFO -------------------------------------------------------------------------------- /src/proxy/build/http-parser/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/build/http-parser/setup.py -------------------------------------------------------------------------------- /src/proxy/http-parser/.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/.travis.yml -------------------------------------------------------------------------------- /src/proxy/http-parser/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/LICENSE -------------------------------------------------------------------------------- /src/proxy/http-parser/MANIFEST.in: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/MANIFEST.in -------------------------------------------------------------------------------- /src/proxy/http-parser/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/Makefile -------------------------------------------------------------------------------- /src/proxy/http-parser/NOTICE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/NOTICE -------------------------------------------------------------------------------- /src/proxy/http-parser/README.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/README.rst -------------------------------------------------------------------------------- /src/proxy/http-parser/THANKS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/THANKS -------------------------------------------------------------------------------- /src/proxy/http-parser/TODO.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/TODO.md -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/__init__.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/_socketio.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/_socketio.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/http.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/parser.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/parser.so -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/pyparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/pyparser.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/reader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/reader.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/util.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/lib.linux-i686-2.7/http_parser/util.py -------------------------------------------------------------------------------- /src/proxy/http-parser/build/temp.linux-i686-2.7/http_parser/http_parser.o: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/temp.linux-i686-2.7/http_parser/http_parser.o -------------------------------------------------------------------------------- /src/proxy/http-parser/build/temp.linux-i686-2.7/http_parser/parser.o: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/build/temp.linux-i686-2.7/http_parser/parser.o -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/changelog: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/changelog -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/clean: -------------------------------------------------------------------------------- 1 | http-parser.egg-info/* 2 | -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/compat: -------------------------------------------------------------------------------- 1 | 7 2 | -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/control: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/control -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/copyright: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/copyright -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/python-http-parser.preinst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/python-http-parser.preinst -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/pyversions: -------------------------------------------------------------------------------- 1 | 2.5- 2 | -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/rules: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/rules -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/source/format: -------------------------------------------------------------------------------- 1 | 3.0 (native) 2 | -------------------------------------------------------------------------------- /src/proxy/http-parser/debian/watch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/debian/watch -------------------------------------------------------------------------------- /src/proxy/http-parser/dist/http_parser-0.8.1-py2.7-linux-i686.egg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/dist/http_parser-0.8.1-py2.7-linux-i686.egg -------------------------------------------------------------------------------- /src/proxy/http-parser/examples/httpparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/examples/httpparser.py -------------------------------------------------------------------------------- /src/proxy/http-parser/examples/httpparser_from_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/examples/httpparser_from_file.py -------------------------------------------------------------------------------- /src/proxy/http-parser/examples/httpstream.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/examples/httpstream.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser.egg-info/PKG-INFO: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser.egg-info/PKG-INFO -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/__init__.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/_socketio.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/_socketio.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/http.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/http.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/http_parser.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/http_parser.c -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/http_parser.gyp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/http_parser.gyp -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/http_parser.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/http_parser.h -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/parser.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/parser.c -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/parser.pyx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/parser.pyx -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/parser.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/parser.so -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/pyparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/pyparser.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/pyversion_compat.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/pyversion_compat.h -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/reader.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/reader.py -------------------------------------------------------------------------------- /src/proxy/http-parser/http_parser/util.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/http_parser/util.py -------------------------------------------------------------------------------- /src/proxy/http-parser/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/setup.py -------------------------------------------------------------------------------- /src/proxy/http-parser/testing/test_parse_from_stream.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/testing/test_parse_from_stream.py -------------------------------------------------------------------------------- /src/proxy/http-parser/tox.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/http-parser/tox.ini -------------------------------------------------------------------------------- /src/proxy/httpparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/httpparser.py -------------------------------------------------------------------------------- /src/proxy/msqlhttp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/msqlhttp.py -------------------------------------------------------------------------------- /src/proxy/multiproc.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/multiproc.py -------------------------------------------------------------------------------- /src/proxy/multiproc_ff.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/multiproc_ff.py -------------------------------------------------------------------------------- /src/proxy/multiproc_java.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/multiproc_java.py -------------------------------------------------------------------------------- /src/proxy/multiproc_links.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/multiproc_links.py -------------------------------------------------------------------------------- /src/proxy/multiproc_links_ie.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/multiproc_links_ie.py -------------------------------------------------------------------------------- /src/proxy/parse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/parse.py -------------------------------------------------------------------------------- /src/proxy/proxy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/proxy.py -------------------------------------------------------------------------------- /src/proxy/proxy_links.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/proxy_links.py -------------------------------------------------------------------------------- /src/proxy/pysph.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/pysph.py -------------------------------------------------------------------------------- /src/proxy/run.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run.sh -------------------------------------------------------------------------------- /src/proxy/run_mprocess.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run_mprocess.py -------------------------------------------------------------------------------- /src/proxy/run_mprocess_2.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run_mprocess_2.py -------------------------------------------------------------------------------- /src/proxy/run_mprocess_ff.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run_mprocess_ff.py -------------------------------------------------------------------------------- /src/proxy/run_mprocess_ff_1.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run_mprocess_ff_1.py -------------------------------------------------------------------------------- /src/proxy/run_mprocess_ie.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/run_mprocess_ie.py -------------------------------------------------------------------------------- /src/proxy/sele.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/sele.py -------------------------------------------------------------------------------- /src/proxy/sele_ff.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/sele_ff.py -------------------------------------------------------------------------------- /src/proxy/sele_ie.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/sele_ie.py -------------------------------------------------------------------------------- /src/proxy/sele_java.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/sele_java.py -------------------------------------------------------------------------------- /src/proxy/yara_scan_links.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/proxy/yara_scan_links.py -------------------------------------------------------------------------------- /src/readme: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /src/samples/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/samples/__init__.py -------------------------------------------------------------------------------- /src/samples/build/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/dfiles/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/jfiles/binaries/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/jfiles/decompiled/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/jfiles/extracted/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/o/readme: -------------------------------------------------------------------------------- 1 | Extracted Sample goes here -------------------------------------------------------------------------------- /src/samples/run.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/samples/run.py -------------------------------------------------------------------------------- /src/sched.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/sched.py -------------------------------------------------------------------------------- /src/timeout.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/timeout.py -------------------------------------------------------------------------------- /src/yara_scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/yara_scan.py -------------------------------------------------------------------------------- /src/ziplib_test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/src/ziplib_test.py -------------------------------------------------------------------------------- /yara-ctypes/.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/.travis.yml -------------------------------------------------------------------------------- /yara-ctypes/MANIFEST.in: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/MANIFEST.in -------------------------------------------------------------------------------- /yara-ctypes/README.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/README.rst -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/__init__.py -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/libyara_wrapper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/libyara_wrapper.py -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules.py -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/example/packer_rules.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/example/packer_rules.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/antidebug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/antidebug.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/compiler.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/compiler.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/compression.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/compression.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/fingerprint.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/fingerprint.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/integerparsing.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/integerparsing.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/libs.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/libs.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/microsoft.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/microsoft.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/sockets.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/rules/hbgary/sockets.yar -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/build/lib.linux-x86_64-2.7/yara/scan.py -------------------------------------------------------------------------------- /yara-ctypes/build/lib.linux-x86_64-2.7/yara/version.py: -------------------------------------------------------------------------------- 1 | __version__ = "1.6.1" 2 | -------------------------------------------------------------------------------- /yara-ctypes/dist/yara-1.6.1-py2.7.egg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/dist/yara-1.6.1-py2.7.egg -------------------------------------------------------------------------------- /yara-ctypes/distribute-0.6.25-py2.7.egg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/distribute-0.6.25-py2.7.egg -------------------------------------------------------------------------------- /yara-ctypes/distribute-0.6.25.tar.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/distribute-0.6.25.tar.gz -------------------------------------------------------------------------------- /yara-ctypes/distribute_setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/distribute_setup.py -------------------------------------------------------------------------------- /yara-ctypes/docs/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/Makefile -------------------------------------------------------------------------------- /yara-ctypes/docs/make.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/make.bat -------------------------------------------------------------------------------- /yara-ctypes/docs/source/conf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/conf.py -------------------------------------------------------------------------------- /yara-ctypes/docs/source/howto/build.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/howto/build.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/howto/install.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/howto/install.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/howto/scan.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/howto/scan.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/index.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/index.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/yara/libyara_wrapper.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/yara/libyara_wrapper.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/yara/rules.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/yara/rules.rst -------------------------------------------------------------------------------- /yara-ctypes/docs/source/yara/scan.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/docs/source/yara/scan.rst -------------------------------------------------------------------------------- /yara-ctypes/libs/ELF/32bit/libyara.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/libs/ELF/32bit/libyara.so -------------------------------------------------------------------------------- /yara-ctypes/libs/ELF/64bit/libyara.so: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/libs/ELF/64bit/libyara.so -------------------------------------------------------------------------------- /yara-ctypes/libs/WindowsPE/32bit/libyara.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/libs/WindowsPE/32bit/libyara.dll -------------------------------------------------------------------------------- /yara-ctypes/libs/WindowsPE/64bit/libyara.dll: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/libs/WindowsPE/64bit/libyara.dll -------------------------------------------------------------------------------- /yara-ctypes/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/setup.py -------------------------------------------------------------------------------- /yara-ctypes/tests/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /yara-ctypes/tests/broken_rules.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/tests/broken_rules.yar -------------------------------------------------------------------------------- /yara-ctypes/tests/test_libyara_wrapper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/tests/test_libyara_wrapper.py -------------------------------------------------------------------------------- /yara-ctypes/tests/test_rules.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/tests/test_rules.py -------------------------------------------------------------------------------- /yara-ctypes/yara.egg-info/PKG-INFO: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara.egg-info/PKG-INFO -------------------------------------------------------------------------------- /yara-ctypes/yara.egg-info/not-zip-safe: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /yara-ctypes/yara/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/__init__.py -------------------------------------------------------------------------------- /yara-ctypes/yara/libyara_wrapper.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/libyara_wrapper.py -------------------------------------------------------------------------------- /yara-ctypes/yara/rules.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules.py -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/browser/.exploits.yar.kate-swp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/browser/.exploits.yar.kate-swp -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/browser/exploit_kits.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/browser/exploit_kits.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/browser/exploits.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/browser/exploits.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/clam_av/clam_av.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/clam_av/clam_av.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/clam_av/test.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/clam_av/test.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/comment_crew/comment_crew.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/comment_crew/comment_crew.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/example/packer_rules.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/example/packer_rules.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/antidebug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/antidebug.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/compiler.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/compiler.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/compression.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/compression.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/fingerprint.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/fingerprint.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/integerparsing.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/integerparsing.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/libs.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/libs.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/microsoft.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/microsoft.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/hbgary/sockets.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/hbgary/sockets.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/ie/exploit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/ie/exploit.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/java/exploit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/java/exploit.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/jsclassifier.yar: -------------------------------------------------------------------------------- 1 | include "jsclassifier/plugindetect.yar" 2 | -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/jsclassifier/plugindetect.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/jsclassifier/plugindetect.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/jsunpack/jsunpack.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/jsunpack/jsunpack.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/blackhole.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/blackhole.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/cool.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/cool.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/crimeboss.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/crimeboss.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/critxpack.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/critxpack.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/fiesta.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/fiesta.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/g01pack.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/g01pack.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/impact.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/impact.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/neutrino.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/neutrino.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/nuclear.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/nuclear.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/popads.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/popads.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/redkit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/redkit.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/safepack.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/safepack.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/sakura.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/sakura.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/sofosfo.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/sofosfo.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/styx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/styx.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/sweetorange.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/sweetorange.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/rules/urlclassifier/tds.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/rules/urlclassifier/tds.yar -------------------------------------------------------------------------------- /yara-ctypes/yara/scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/fb1h2s/sandy/HEAD/yara-ctypes/yara/scan.py -------------------------------------------------------------------------------- /yara-ctypes/yara/version.py: -------------------------------------------------------------------------------- 1 | __version__ = "1.6.1" 2 | --------------------------------------------------------------------------------