http://boredomsoft.org/index.bs?page=VT+Hash+Check
VT Hash Check adds a Windows Explorer context menu item to compute the MD5 hash checksum of any file and to then send that checksum to http://www.virustotal.com for checking against their Virus database.
Download|GPG Sig (?)
Current VersionThe most current version of VT Hash Check is 0.81 Beta (Last update: 7/30/10).
Files Included in the Download- setup.exe - Program Installer
- ReadMe.txt - ReadMe File
- License.txt - License
InstallationExecute the included setup.exe file to install.
IssuesNone Reported.
Command Line Parameters- !about
- !SHA1
- Use the SHA1 algorithm (see Further Notes, below)
Further NotesBy default, only the MD5 hash is computed. The MD5 hash algorithm is vulnerable to theoretical collisions and has been recommended to be avoided for cryptographic functions requiring a high level of security1. While this theoretical vulnerability may represent a deficiency in the operation of this particular program, I don't feel that it should cast any doubt onto the results returned by the program via Virus Total. Nevertheless, for those of you interested in using a theoretically superior hash function, I have included the option to use the SHA12 hash function instead.
To invoke the SHA1 option, you may pass the program the !SHA1 argument before the file path like this:
VTHash.exe !SHA1 C:\somefile.exe
If you prefer for SHA1 to be the default, create a file called "usesha1" (sans quotes) in the installation directory (by default: C:\Program Files\Boredom Software\VT Hash Check):
When attempting check the hashes of executable files obtained from the Internet, users are likely to see a warning similar to this one:
This warning is generated by Windows whenever an executable file launched if the executable was downloaded from an untrusted network source (i.e. the Internet) and saved on a drive formatted in NTFS. Windows uses a special alternate data stream to mark the file as "untrusted" and prompts the user any time the file is about to be opened, even if the act of opening it is only to read the data therein.
VT Hash Check does not actually launch or execute any file processed through it. It reads the data from the file, computes the hash based on the data, and then closes it. The data is treated the same way whether the file being hashed is an executable or and image or a text file.
However, I am not a computer security expert. I cannot guarantee that the program is immune to attack, error, etc.
好处是可以直接在档案右键,方便很多呢,而且还有命令行参数可用呢
P.S. 如有错区,麻烦版大移一下 |
发表于 2010-8-9 10:52:42
楼主
发表于 2010-8-9 13:59:14
