MaintainTeam/Hypatia
1
0
Fork 0
mirror of https://github.com/MaintainTeam/Hypatia.git synced 2025-03-01 05:48:23 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update conversion scripts

Browse source
This commit is contained in:
Tad 2021-07-21 13:44:19 -04:00
parent 2cd03bfe09
commit b82476ba9f
3 changed files with 49 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

16
scripts/clamav.sh → scripts/0clamav.sh
View file

@ -1,13 +1,15 @@
#!/bin/sh #!/bin/sh
#License: GPLv3 #License: GPL-3.0
#Description: Hypatia conversion script for ClamAV databases (GPL-2.0)
#sudo freshclam #sudo freshclam
mkdir /tmp/mss mkdir /tmp/mss
mkdir /tmp/mss/processed
cd /tmp/mss cd /tmp/mss
cp /var/lib/clamav/main.cvd . cp /var/lib/clamav/main.cvd .
cp /var/lib/clamav/daily.cld . cp /var/lib/clamav/daily.cvd .
sigtool -u main.cvd sigtool -u main.cvd
sigtool -u daily.cld sigtool -u daily.cvd
#MD5 #MD5
grep "Andr\\." main.hdb >> Android.hdb grep "Andr\\." main.hdb >> Android.hdb
@ -25,5 +27,13 @@ grep "Unix\\." daily.hsb >> Android.hsb
grep "Multios\\." main.hsb >> Android.hsb grep "Multios\\." main.hsb >> Android.hsb
grep "Multios\\." daily.hsb >> Android.hsb grep "Multios\\." daily.hsb >> Android.hsb
databases=("Android.hdb" "Android.hsb" "main.hdb" "main.hsb" "daily.hdb" "daily.hsb");
for db in "${databases[@]}"
do
sort --parallel=$(nproc) --unique "$db" --output processed/"$db";
done;
gzip /tmp/mss/*.hdb gzip /tmp/mss/*.hdb
gzip /tmp/mss/*.hsb gzip /tmp/mss/*.hsb
gzip /tmp/mss/processed/*.hdb
gzip /tmp/mss/processed/*.hsb

1
scripts/eset.sh → scripts/0eset.sh
View file

@ -1,5 +1,6 @@
#!/bin/bash #!/bin/bash
#License: GPLv3 #License: GPLv3
#Description: Hypatia conversion script for https://github.com/eset/malware-ioc (BSD-2-Clause)
processHashes() { processHashes() {
local name=$(basename $1); local name=$(basename $1);

35
scripts/0targetedthreats.sh Normal file
View file

@ -0,0 +1,35 @@
#!/bin/bash
#License: GPLv3
#Description: Hypatia conversion script for https://github.com/botherder/targetedthreats (CC BY-SA 4.0)
while IFS=, read -r col1MD5 col2SHA256 col3Family col4Actor col5Country col6Report
do
col4Actor=$(sed -e 's/^"//' -e 's/"$//' <<< "$col4Actor");
col3Family=$(sed -e 's/^"//' -e 's/"$//' <<< "$col3Family");
if [ -n "$col4Actor" ] && [ -n "$col3Family" ]; then
description="$col4Actor-$col3Family";
elif [ -n "$col4Actor" ] && [ -z "$col3Family" ]; then
description="$col4Actor";
elif [ -z "$col4Actor" ] && [ -n "$col3Family" ]; then
description="$col3Family";
fi;
if [ -z "$description" ]; then
description="targetedthreats";
fi;
col1MD5=$(sed -e 's/^"//' -e 's/"$//' <<< "$col1MD5");
if [ -n "$col1MD5" ]; then
echo "$col1MD5:0:$description" >> ./targetedthreats.hdb;
fi;
col2SHA256=$(sed -e 's/^"//' -e 's/"$//' <<< "$col2SHA256");
if [ -n "$col2SHA256" ]; then
echo "$col2SHA256:0:$description" >> ./targetedthreats.hsb;
fi;
done < samples.csv;
sed -i '1d' targetedthreats.hdb;
sed -i '1d' targetedthreats.hsb;
gzip targetedthreats.hdb;
gzip targetedthreats.hsb;