Skip to content
/ Tripwire Public

Digital forensics tool to detect and snapshot malware file events during dynamic analysis. Catch malware creating/deleting files.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

blwhit/Tripwire

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
README.md
README.md
 
 
Tripwire.exe
Tripwire.exe
 
 
Tripwire.py
Tripwire.py
 
 

Repository files navigation

Tripwire

A Python-based digital forensics tool for real-time detection/snapshotting of temporary files created by malware.
Ideal for dynamic analysis of fileless malware, and monitoring suspicious file events during runtime.

Features:

  • Monitor multiple file system paths.
  • Specify file extensions to detect.
  • Real-time monitoring 0.1 second delay.
  • Exclude specific file types from monitoring.

Usage:

Executable (Recommended)

.\Tripwire.exe

Python

pip install watchdog colorama

git clone https://github.com/blwhit/Tripwire.git

python Tripwire.py

Example:

Tripwire in Action

About

Digital forensics tool to detect and snapshot malware file events during dynamic analysis. Catch malware creating/deleting files.

Topics

reflection incident-response reverse-engineering malware-analysis forensic-analysis fileless-malware

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages