stringsifter - any chance we can add? #117
Comments
|
I like stringsifter as an idea, but I haven't found it especially useful in my own experience. When I look at strings, I find it relatively easy to identify "interesting" strings on my own. And the tool's use of ML to highlight strings of interest hasn't shown me anything I didn't spot myself. But I haven't tested the tool extensively, so it's very possible I'm under-appreciating it. Have you found it particularly useful? |
|
I think it is more useful to newer analyst as it pulls all the more likely relevant strings to the top and I have actually found strings that way that I had skipped over previously. If it isn’t to heavy for the distro I know I would use it a lot.
… On Jul 15, 2020, at 5:39 AM, Lenny Zeltser ***@***.***> wrote:
I like stringsifter as an idea, but I haven't found it especially useful in my own experience. When I look at strings, I find it relatively easy to identify "interesting" strings on my own. And the tool's use of ML to highlight strings of interest hasn't shown me anything I didn't spot myself. But I haven't tested the tool extensively, so it's very possible I'm under-appreciating it.
Have you found it particularly useful?
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub <#117 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ANPSCK4DA6U4DWITQ2WTVQLR3WPP3ANCNFSM4O2BDZRQ>.
|
|
OK, good points. I added the tool to the distro. Thanks for the idea. |
|
Absolutely and thank you.
Something I think that would be very cool and I would be willing to assist with it if it were to become a thing, would to make a video series of all the tools on the VM and some basic use case scenarios, just put balling a n idea is all
Again thank you for all the work on this and c u at the summit tomorrow, I am actually presenting first thing in the morning hahahaha
cheers
Aaron
… On Jul 15, 2020, at 6:33 PM, Lenny Zeltser ***@***.***> wrote:
OK, good points. I added the tool to the distro. Thanks for the idea.
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub <#117 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ANPSCKYLTKDF76L2I255YNDR3ZKEZANCNFSM4O2BDZRQ>.
|
|
Sweet, that's one of the presentations I'm hoping to attend! And yes, a series that showcases the various tools would be amazing! There is a placeholder for linking to content like this here: https://docs.remnux.org/tips/remnux-tool-tips |
|
Awesome,
Thank you for taking the time
cheers
Aaron
… On Jul 15, 2020, at 6:39 PM, Lenny Zeltser ***@***.***> wrote:
Sweet, that's one of the presentations I'm hoping to attend!
And yes, a series that showcases the various tools would be amazing! There is a placeholder for linking to content like this here: https://docs.remnux.org/tips/remnux-tool-tips <https://docs.remnux.org/tips/remnux-tool-tips>
—
You are receiving this because you authored the thread.
Reply to this email directly, view it on GitHub <#117 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ANPSCK54EDZNEHZEEY374D3R3ZK4PANCNFSM4O2BDZRQ>.
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
really like this tool a lot
https://github.com/fireeye/stringsifter
The text was updated successfully, but these errors were encountered: