Cyberdefense/DeepBlueCLI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update DeepWhite.md

Browse Source
This commit is contained in:
Eric Conrad
2017-09-07 16:25:43 -04:00
committed by GitHub
parent 37b7224646
commit 9885c1c2bc
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
DeepWhite.md
View File

@ -35,7 +35,7 @@ Note that hashdeep, etc., has a dumb recursive design (from the manpage):
On Linux/Unix: take the raw CSV, remove the carriage returns, select DLLs, EXEs and SYS files, grab the 2nd field to the end, and create a new whitelist: On Linux/Unix: take the raw CSV, remove the carriage returns, select DLLs, EXEs and SYS files, grab the 2nd field to the end, and create a new whitelist:
``` ```
cat raw-hashes.csv | tr -d '\r' | egrep "\.dll$|\.exe$|\.sys" | cut -d, -f2- > file-whitelist.csv cat raw-hashes.csv | tr -d '\r' | egrep "\.dll$|\.exe$|\.sys$" | cut -d, -f2- > file-whitelist.csv
``` ```
Add this entry to the first line of the file (only sha256 and path are currently needed) Add this entry to the first line of the file (only sha256 and path are currently needed)