Skip to content

Botacin-s-Lab/SDHash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
.github/workflows
.github/workflows
 
 
base64
base64
 
 
external
external
 
 
extra
extra
 
 
lz4
lz4
 
 
man
man
 
 
sdbf
sdbf
 
 
sdhash-gpu
sdhash-gpu
 
 
sdhash-server
sdhash-server
 
 
sdhash-src
sdhash-src
 
 
sdhash-ui
sdhash-ui
 
 
BUILD.windows
BUILD.windows
 
 
ChangeLog
ChangeLog
 
 
Dockerfile
Dockerfile
 
 
Doxyfile
Doxyfile
 
 
INSTALL
INSTALL
 
 
INSTALL.macosx
INSTALL.macosx
 
 
INSTALL.server
INSTALL.server
 
 
LICENSE
LICENSE
 
 
LICENSE copy
LICENSE copy
 
 
Makefile
Makefile
 
 
NOTICE
NOTICE
 
 
README copy.md
README copy.md
 
 
README.beta-ui
README.beta-ui
 
 
README.files
README.files
 
 
README.md
README.md
 
 
README.swig-python
README.swig-python
 
 
docker-compose.yml
docker-compose.yml
 
 
libsdbf.a
libsdbf.a
 
 
sdhash.cfg.example
sdhash.cfg.example
 
 
sdhash.py
sdhash.py
 
 

Repository files navigation

README

Modified sdhash for Malware Analysis

This tool is based on the original sdhash, which can be found at: https://github.com/sdhash/sdhash

This version has been modified by Moia et al., as published in: https://sol.sbc.org.br/index.php/sbseg_estendido/article/view/19263

Purpose

This tool is designed for malware analysis, following the methodology described in Botacin et al.: https://www.sciencedirect.com/science/article/abs/pii/S2666281721001281

Features

  • Modified similarity hashing for enhanced malware detection.
  • Optimized comparison mechanisms for binary analysis.
  • Compatible with large datasets for batch processing.
  • Supports integration with existing forensic tools.

Installation

# Clone the repository
git clone https://github.com/your-repo/sdhash-modified.git
cd sdhash-modified

# Compile the tool
make

Alternative Installation (Precompiled Binary)

# Download precompiled SDhash

wget $(curl -s https://api.github.com/repos/Botacin-s-Lab/SDHash/releases/latest | grep "browser_download_url" | cut -d '"' -f 4) -O SDhash

# Make SDhash executable
chmod +x SDhash

# Optionally move SDhash to a global bin location (e.g., /usr/local/bin) to run it anywhere
mv SDhash /usr/local/bin/sdhash

Usage

# HELP
sdhash -h

About

Modified Sdhash for Malware Analysis

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

Release 1.0.0 Latest
Mar 14, 2025

Packages

No packages published

Languages