From d4dd437d3710c6e1dfa2f677c020cbfececfda71 Mon Sep 17 00:00:00 2001 From: TKE Date: Wed, 13 May 2020 12:05:05 +0200 Subject: [PATCH] Add bindiff and update avscan alias --- shell_aliases | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/shell_aliases b/shell_aliases index 5335122..8f13526 100644 --- a/shell_aliases +++ b/shell_aliases @@ -24,6 +24,7 @@ alias remnux_thug='sudo docker run --rm -it --dns=192.168.130.1 -v /var/log/dock alias remnux_viper='docker run --rm -it --dns=192.168.130.1 -v ${workdir-`pwd`}:/home/nonroot/workdir remnux/viper bash' alias remnux_vol='docker run --rm -it -v ${workdir-`pwd`}:/home/nonroot/memdumps remnux/volatility bash' alias rot13='tr "abcdefghijklmnopqrstuvwxyz" "zyxwvutsrqponmlkjihgfedcba"' -function avscan(){ av="${1:-kaspersky}"; [[ "${av}" -eq "update" ]] && (docker pull tabledevil/kaspersky;docker pull tabledevil/sep;docker pull tabledevil/clamav) || dritpwro "tabledevil/${av}" scan ;} +function bindiff() { cmp -l "${1}" "${2}" | gawk '{printf "%s,%02X,%02X\n",$1,strtonum(0$2),strtonum(0$3) }' ; } +function avscan(){ av="${1:-kaspersky}" ; if [ "${av}" == "update" ] ; then ( docker pull tabledevil/kaspersky ; docker pull tabledevil/sep ; docker pull tabledevil/clamav) ; elif [[ $# -eq 2 ]] ; then dritpwro "tabledevil/${av}" "${2}" ; else dritpwro "tabledevil/${av}" scan ; fi ; } function dockerfa() { [[ $# -eq 0 ]] && wpd=$(readlink -f . ) || wpd=$(readlink -f "${1}"); docker run -it --rm -v "${wpd}":/data tabledevil/file-analysis;} function docker_killall() { docker rm $(docker stop $(docker ps -a -q --filter ancestor="${1}" --format="{{.ID}}")) ; }