阅读原文:https://securelist.com/opentip-command-line-edition/107109/
https://github.com/KasperskyLab/OpenTIP-scanner
直接用pip3安装即可
pip3 install opentip
opentip使用
usage: opentip [-h] [--no-upload] [--exclude EXCLUDE] [--log LOG] [--apikey APIKEY] [--quiet] path [path ...]
Check files and directories with OpenTIP.kaspersky.com, optionally upload and scan unknown files
positional arguments:
path File or directory location to scan
optional arguments:
-h, --help show this help message and exit
--no-upload DO NOT upload unknown files to scan with the Sandbox, default behaviour is to upload
--exclude EXCLUDE Do not scan or upload the files matching the pattern
--log LOG Write results to the log file
--apikey APIKEY OpenTIP API key, received from https://opentip.kaspersky.com/token
--quiet Do not log clean files
check_iocs使用
usage: check_iocs [-h] [--apikey APIKEY] [--out OUT] type value
Check IOCS (file hashes, IP addresses, domain names, URLs using the service OpenTIP.kaspersky.com
positional arguments:
type hash, ip, domain, url
value Value of the IOC (hash, ip, domain, url, filename with the iocs)
optional arguments:
-h, --help show this help message and exit
--apikey APIKEY OpenTIP API key, received from https://opentip.kaspersky.com/token
--out OUT, -o OUT Write output as JSON to this filename |
发表于 2022-8-11 20:54:38
楼主