Identifies and extracts information from bots and other malware. Information is returned in a readable json format. bamfdetect works by reading files into RAM, applying any applicable preprocessors, then applying Yara signatures from modules to determine which module it matches. After a match is located, the module can then extract the configuration from the file.
more here........https://github.com/bwall/bamfdetect
and Nanocore v1.6.3 module release here....https://github.com/bwall/bamfdetect/releases/tag/v1.6.3
more here........https://github.com/bwall/bamfdetect
and Nanocore v1.6.3 module release here....https://github.com/bwall/bamfdetect/releases/tag/v1.6.3