Documentation
¶
Index ¶
- Constants
- Variables
- type Actor
- type Actors
- type Endpoint
- type Families
- type Family
- type FamilySample
- type FamilySamples
- type FindActor
- type FindActorElement
- type FindFamily
- type FindFamilyElement
- type ListFamilySamples
- type Meta
- type Properties
- type Related
- type SampleState
- type Version
- type YaraMatchesValue
- type ZippedResults
Constants ¶
View Source
const ( EndpointGetSampleRaw = "/get/sample/%s/raw" EndpointGetSampleZip = "/get/sample/%s/zip" EndpointVersion = "/get/version" EndpointGetActors = "/list/actors" EndpointGetActor = "/get/actor/%s" EndpointGetYaraRaw = "/get/yara/%s/raw" EndpointGetYaraZip = "/get/yara/%s/zip" EndpointFindActor = "/find/actor/%s" EndpointGetFamilies = "/get/families" EndpointGetFamily = "/get/family/%s" EndpointFindFamily = "/find/family/%s" EndpointGetYaraRulesForFamily = "/get/yara/%s/zip" EndpointListFamilySamples = "/list/samples/%s" EndpointScanBinary = "/scan/binary" EndpointScanYara = "/scan/yara" EndpointScanYaraAgainstFamily = "/scan/yara/%s" )
View Source
const ( APIBase = "https://malpedia.caad.fkie.fraunhofer.de/api" Dumped string = "dumped" Packed string = "packed" Unpacked string = "unpacked" )
Variables ¶
View Source
var ErrResourceNotFound = errors.New("Resource Not Found")
Functions ¶
This section is empty.
Types ¶
type Family ¶
type Family struct {
Updated string `json:"updated"`
Attribution []string `json:"attribution"`
Description string `json:"description"`
Notes []string `json:"notes"`
AltNames []string `json:"alt_names"`
Sources []interface{} `json:"sources"`
Urls []string `json:"urls"`
CommonName string `json:"common_name"`
UUID *string `json:"uuid,omitempty"`
Properties *Properties `json:"properties,omitempty"`
}
type FamilySample ¶
type FamilySamples ¶
type FamilySamples map[string][]FamilySample
type FindActor ¶
type FindActor []FindActorElement
type FindActorElement ¶
type FindActorElement struct {
CommonName string `json:"common_name"`
Synonyms []string `json:"synonyms"`
Name string `json:"name"`
}
FindActor -----------------------------------------------------------
type FindFamily ¶
type FindFamily []FindFamilyElement
FindFamily ----------------------------------------------------------
type FindFamilyElement ¶
type ListFamilySamples ¶
type ListFamilySamples struct {
Status string `json:"status"`
Sha256 string `json:"sha256"`
Version string `json:"version"`
}
ListFamilySamples ----------------------------------------------------------
type Meta ¶
type Meta struct {
CfrSuspectedVictims []string `json:"cfr-suspected-victims"`
Country string `json:"country"`
Refs []string `json:"refs"`
CfrTargetCategory []string `json:"cfr-target-category"`
CfrTypeOfIncident string `json:"cfr-type-of-incident"`
Synonyms []string `json:"synonyms"`
CfrSuspectedStateSponsor string `json:"cfr-suspected-state-sponsor"`
AttributionConfidence string `json:"attribution-confidence"`
}
type Properties ¶
type SampleState ¶ added in v0.2.0
SampleState represents a acquired file from malpedia. Malpedia will return a sample at multiple states so you can see it dumped at different addresses and being packed or unpacked
type YaraMatchesValue ¶
type YaraMatchesValue struct {
MatchedStrings int64 `json:"matched_strings"`
MatchedHits int64 `json:"matched_hits"`
Match bool `json:"match"`
}
ScanBinary ----------------------------------------------------------
type ZippedResults ¶
type ZippedResults struct {
Zipped string `json:"zipped"`
}
Source Files
Click to show internal directories.
Click to hide internal directories.