v1.4.0
What's new?
- Parse content and calculate checksum from files inside archives
Usage
usage: fastfinder [-h|--help] [-c|--configuration "<value>"] [-b|--build
"<value>"] [-o|--output "<value>"] [-n|--nowindow]
[-p|--showprogress] [-v|--version]
Incident Response - Fast suspicious file finder
Arguments:
-h --help Print help information
-c --configuration Fastfind configuration file. Default: configuration.yaml
-b --build Output a standalone package with configuration and rules
in a single binary
-o --output Save fastfinder logs in the specified file
-n --nowindow Hide fastfinder window
-p --showprogress Display I/O analysis progress
-v --version Display fastfinder version
Scan and export file match according to your needs
configuration examples are available under examples/ folder
Future release
I don't plan to add any additional features right now. The next release will be focused on:
- Stability / performance improvements
- Unit testing / Code testing coverage / CI
- Build more examples based on live malwares tradecraft and threat actor campaigns
Full Changelog: 1.3.0...1.4.0