Releases · codeyourweb/hnuke

Parse md5/sha1/sha256 from your input path and search them on VirusTotal
Extract usefull informations from VT API to help you decide whether theses items are harmull or not and if there are some elements to pivot on.
Remove duplicate content before output
Includes a time delay when the API call limit is reached
Direct analysis mode embeded to calculate hash of provided content (local and distant file) that could be usefull in a triage mode
If you want to stop the routine in progress, CTRL+C save and quit to not loose any work when this is no longer possible today

Capababilities and use cases

Hnuke was designed for two purpose:

Parser mode: based on a file, a path or an URL, search for every md5 / sha1 or sha256 hash and load usefull informations that help you decided if it's harmfull or not. Then it shows any relevant information (footprint, fuzzyhash, first submission, tag, details...) on what you can pivot on.
Analysis mode: similar to parser mode, except that instead of searching for hash it will get your input sha1 and will search it on VIrusTotal (don't worry, it won't submit your files :)