FireEye StringSifter

StringSifter is built to sit downstream from the Strings program; it takes a list of strings as input and returns those same strings ranked according to their relevance for malware analysis as output. It is intended to make an analyst's life easier, allowing them to focus their attention on only the most relevant strings located towards the top of its predicted output. StringSifter is designed to be seamlessly plugged into a user’s existing malware analysis stack. Once its GitHub repository is cloned and installed locally, it can be conveniently invoked from the command line with its default arguments according to:

       strings <sample_of_interest> | rank_strings

We are also providing Docker command line tools for additional portability and usability. For a more detailed overview of how to use StringSifter, including how to specify optional arguments for customizable functionality, click the Learn More button below to access our Github repo.

The Terms of Use for this software are subject to the licensing and terms outlined in the OSS repository.

Learn More

Support

Developer:FireEye
Supported By:FireEye
Support:Refer to full documentation/support on Github.
Contact:Issues
Resources:Technical blog post
Announcement blog post

OSS Info

Version:1.0.0
Requirements:Python version 3.6 or newer

Similar Apps

Open-Source
Open-Source