pedump 0.4.14 → 0.4.15
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- data/Gemfile +1 -1
- data/Gemfile.lock +0 -2
- data/Rakefile +6 -5
- data/VERSION +1 -1
- data/data/fs.txt +37 -1408
- data/data/jc-userdb.txt +14371 -0
- data/data/sig.bin +0 -0
- data/lib/pedump/sig_parser.rb +89 -11
- data/lib/pedump/version.rb +1 -1
- data/pedump.gemspec +3 -5
- data/spec/sig_spec.rb +6 -1
- metadata +33 -48
data/Gemfile
CHANGED
data/Gemfile.lock
CHANGED
|
@@ -10,7 +10,6 @@ GEM
|
|
|
10
10
|
rake
|
|
11
11
|
rdoc
|
|
12
12
|
json (1.7.5)
|
|
13
|
-
looksee (1.0.3)
|
|
14
13
|
multipart-post (1.1.5)
|
|
15
14
|
progressbar (0.12.0)
|
|
16
15
|
rake (10.0.2)
|
|
@@ -33,7 +32,6 @@ DEPENDENCIES
|
|
|
33
32
|
awesome_print
|
|
34
33
|
bundler
|
|
35
34
|
jeweler
|
|
36
|
-
looksee
|
|
37
35
|
multipart-post (~> 1.1.4)
|
|
38
36
|
progressbar
|
|
39
37
|
rspec
|
data/Rakefile
CHANGED
|
@@ -113,13 +113,13 @@ namespace :test do
|
|
|
113
113
|
end
|
|
114
114
|
end
|
|
115
115
|
|
|
116
|
-
def check_file url
|
|
116
|
+
def check_file url, prefix=nil
|
|
117
117
|
require 'digest/md5'
|
|
118
118
|
require 'open-uri'
|
|
119
119
|
|
|
120
120
|
STDOUT.sync = true
|
|
121
|
-
fname = File.join 'data', File.basename(url)
|
|
122
|
-
existing_md5 = Digest::MD5.file(fname).hexdigest
|
|
121
|
+
fname = File.join 'data', (prefix ? "#{prefix}-" : '') + File.basename(url)
|
|
122
|
+
existing_md5 = File.exist?(fname) ? Digest::MD5.file(fname).hexdigest : ''
|
|
123
123
|
print "[.] fetching #{url} .. "
|
|
124
124
|
remote_data = open(url).read.force_encoding('cp1252').encode('utf-8')
|
|
125
125
|
puts "#{remote_data.size} bytes"
|
|
@@ -128,18 +128,19 @@ def check_file url
|
|
|
128
128
|
if remote_md5 == existing_md5
|
|
129
129
|
puts "[.] same as local"
|
|
130
130
|
else
|
|
131
|
-
existing_size = File.size(fname)
|
|
131
|
+
existing_size = File.exist?(fname) ? File.size(fname) : 0
|
|
132
132
|
File.open(fname,"wb"){ |f| f << remote_data }
|
|
133
133
|
puts "[*] updated: #{existing_size} -> #{remote_data.size}"
|
|
134
134
|
end
|
|
135
135
|
end
|
|
136
136
|
|
|
137
137
|
namespace :sigs do
|
|
138
|
-
desc "update packers db from
|
|
138
|
+
desc "update packers db from net"
|
|
139
139
|
task :update do
|
|
140
140
|
require './lib/pedump/packer'
|
|
141
141
|
check_file "http://research.pandasecurity.com/blogs/images/userdb.txt"
|
|
142
142
|
check_file "http://fuu.googlecode.com/svn/trunk/src/x86/Tools/Signaturesdb/signatures.txt"
|
|
143
|
+
check_file "http://handlers.sans.edu/jclausing/userdb.txt", "jc"
|
|
143
144
|
end
|
|
144
145
|
|
|
145
146
|
desc "convert txt2bin"
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
0.4.
|
|
1
|
+
0.4.15
|