v1.2.0
What's new?
This new version adds a lot of asked features uppon the v1.0 realease:
- MD5/SHA1/SHA256 checksum matching
- standard output and error can be redirected in a log file
- CD-ROM, archives and virtual images parsing
- ability to run fastfinder without rendering window
- fastfinder executable, configuration and detection rules packing
- bug bashing and performances improvement
Usage
usage: fastfinder [-h|--help] -c|--configuration "<value>" [-b|--build
"<value>"] [-o|--output "<value>"] [-n|--nowindow]
Arguments:
-h --help Print help information
-c --configuration Fastfind configuration file
-b --build Output a standalone package with configuration and rules in a single binary
-o --output Save fastfinder logs in the specified file
-n --nowindow Hide fastfinder window
Depending on where you are looking for files, FastFinder could be used with admin OR simple user rights.
Scan and export file match according to your needs
configuration examples are available under examples/ folder
input:
path: [] # match file path AND / OR file name based on simple string
content:
grep: [] # match literal string value inside file contente
yara: [] # use yara rule and specify rules path(s) for more complex pattern search (wildcards / regex / conditions)
checksum: [] # look for md5/sha1/sha256 file checksum match
options:
findInHardDrives: true # enumerate hard drives content
findInRemovableDrives: true # enumerate removable drives content
findInNetworkDrives: true # enumerate network drives content
findInCDRomDrives: true # enumerate physical / virtual cd-rom drives content
output:
base64Files: true # base64 matched content before copy
filesCopyPath: '' # empty value will copy matched files in the fastfinder.exe folder
Full Changelog: release...1.2.0