sandflysecurity/sandfly-entropyscan
Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives output with cryptographic hashes.
2 Releases
Latest: 3y ago
Go 1.19 go.mod and minor updates.v1.1.1Latest
craighrowland·3y ago·November 14, 2022Updated go.mod to Go 1.19 and had minor updates to fix typo in package name and small README changes.
Version 1.1v1.1
craighrowland·3y ago·June 30, 2022sandfly-entropyscan has been updated to be able to scan all running processes on Linux to find packed or encrypted binaries running. Also includes previous features to scan an individual file or entire directories automatically. Includes new feature to customize delimiter in CSV output.