24 Commits (master)

Author SHA1 Message Date
chrisr3d b2c8f79220
fix: Making pep8 happy 2 years ago
Georg Schölly 04685ea63e joe: (1) allow users to disable PE object import (2) set 'to_ids' to False 2 years ago
chrisr3d aa3e873845
fix: Making pep8 happy + added joe_import module in the init list 3 years ago
chrisr3d 0d40830a7f
fix: Some quick fixes 3 years ago
chrisr3d 74b73f9332
chg: Moved JoeParser class to make it reachable from expansion & import modules 3 years ago
Georg Schölly 9377a892f4 support url analyses 3 years ago
Georg Schölly 380b8d46ba improve forwards-compatibility 3 years ago
chrisr3d 8ac651562e
fix: Making pep8 & travis happy 3 years ago
chrisr3d be05de62c0
add: Parsing MITRE ATT&CK tactic matrix related to the Joe report 3 years ago
chrisr3d e608107a09
add: Parsing domains, urls & ips contacted by processes 3 years ago
chrisr3d cfec9a6b1c
fix: Added references between processes and the files they drop 3 years ago
chrisr3d 191034d311
add: Starting parsing dropped files 3 years ago
chrisr3d 417c306ace
fix: Avoiding network connection object duplicates 3 years ago
chrisr3d 72e5f0099d
fix: Avoid creating a signer info object when the pe is not signed 3 years ago
chrisr3d 54f5fa6fa9
fix: Avoiding dictionary indexes issues 3 years ago
chrisr3d 0d5f867825
add: Starting parsing network behavior fields 3 years ago
chrisr3d f9515c14d0
fix: Avoiding attribute & reference duplicates 3 years ago
chrisr3d 2246fc0d02
add: Parsing registry activities under processes 3 years ago
chrisr3d 067b229224
fix: Handling case of multiple processes in behavior field 3 years ago
chrisr3d d195b554a5
fix: Testing if some fields exist before trying to import them 3 years ago
chrisr3d fc8a56d1d9
fix: Removed test print 3 years ago
chrisr3d 29e681ef81
add: Parsing processes called by the file analyzed in the joe sandbox report 3 years ago
chrisr3d d39fb7da18
add: Parsing some object references at the end of the process 3 years ago
chrisr3d 728386d8a0
add: [new_module] Module to import data from Joe sandbox reports 3 years ago