# File Analysis Container - Help System Guide The enhanced container includes a comprehensive offline help system for malware and file analysis. ## 🎯 Main Help Commands ### Core Help System ```bash fhelp # Complete help system overview fhelp --offline # Verify all offline capabilities work fhelp --all # Show everything available ``` ### Tool Discovery (Fuzzy Search) ```bash fhelp tools pdf # Find all PDF-related tools fhelp tools malware # Find malware analysis tools fhelp tools javascript # Find JavaScript analysis tools fhelp tools --interactive # Browse all tools with fzf fhelp tools --list # List all available tools fhelp tools --categories # Show tool categories ``` ### Command Examples & Cheat Sheets ```bash fhelp cheat pdf # PDF analysis commands fhelp cheat malware # Malware analysis commands fhelp cheat system # System utilities commands fhelp cheat pdfid.py # Specific tool examples fhelp examples # Browse all examples interactively (navi) ``` ### Analysis Workflows ```bash fhelp pdf # Complete PDF analysis workflow fhelp malware # Malware analysis workflow fhelp forensics # System forensics workflow ``` ### Quick Examples (tldr style) ```bash fhelp quick tar # Quick tar examples fhelp quick grep # Quick grep examples fhelp quick find # Quick find examples ``` ## 🛠️ Direct Tool Access ### Interactive Cheat Sheet Browser ```bash navi --fzf # Browse all cheat sheets interactively navi --print # Print cheat sheet for current directory ``` ### Standard Help Tools ```bash cheat tar # Show tar cheat sheet tldr grep # Quick grep examples find-tool pdf # Direct tool search (same as fhelp tools) ``` ## 📚 Available Cheat Sheet Categories - **PDF Analysis** - pdfid.py, pdf-parser.py, peepdf, pdftk, origami tools - **Malware Analysis** - capa, box-js, oledump.py, unfurl, visidata - **System Utilities** - 7z, mc, grep, find, file operations ## 🎨 Example Usage Sessions ### Find PDF Tools ```bash remnux@container:/data$ fhelp tools pdf 🔍 Searching for: pdf 🔧 peepdf Description: Examine elements of the PDF file. Category: analyze documents pdf ✓ Available 🔧 pdfid.py Description: Identify suspicious elements of the PDF file. ✓ Available ``` ### Get PDF Analysis Commands ```bash remnux@container:/data$ fhelp cheat pdf 📄 PDF Analysis Commands: pdfid.py pdf-parser.py peepdf -i pdftk cat output flattened_ ``` ### View Analysis Workflow ```bash remnux@container:/data$ fhelp pdf 📄 PDF Analysis Workflow: 1. Initial Analysis: pdfid.py sample.pdf # Quick overview file sample.pdf # Verify file type 2. Deep Analysis: pdf-parser.py sample.pdf # Structure analysis peepdf -i sample.pdf # Interactive analysis ``` ## 🔧 Troubleshooting ### If `fhelp` doesn't work: ```bash # Use the full path /usr/local/bin/fhelp # Check if it's installed which fhelp ls -la /usr/local/bin/fhelp ``` ### If tools are missing: ```bash # Check offline capabilities fhelp --offline # Verify tool database ls -la /opt/remnux-docs/tools.db ``` ### Alternative Commands - Use `find-tool` instead of `fhelp tools` - Use `navi --fzf` for interactive browsing - Use `cheat` or `tldr` for standard command help ## ⚡ Quick Reference | Command | Purpose | |---------|---------| | `fhelp` | Main help system | | `fhelp tools [term]` | Search for tools | | `fhelp cheat [tool]` | Show examples | | `fhelp [workflow]` | Show analysis workflow | | `navi --fzf` | Interactive cheat sheets | | `find-tool [term]` | Alternative tool search | The entire help system works **completely offline** with local documentation!