Viper v-1.2 released : is a binary management and analysis framework dedicated to malware and exploit researchers.

Viper v-1.2 released : is a binary management and analysis framework dedicated to malware and exploit researchers.

Changelog Viper 1.2 (TBD) :
– Added web interface
– Added option to “pe security” command to identify all signed PEs
– Added structured logging to modules instead of print
– Added authenticode check in “pe security” command
– Transitioned commands and modules to argparse
– Fixed multiuple bugs in email module
– Fixed bug in strings module

Viper is a binary analysis and management framework. Its fundamental objective is to provide a solution to easily organize your collection of malware and exploit samples as well as your collection of scripts you created or found over the time to facilitate your daily research. Think of it as a Metasploit for malware researchers: it provides a terminal interface that you can use to store, search and analyze arbitraty files with and a framework to easily create plugins of any sort.

Viper Shellcode sample

Viper Shellcode sample

Installation :
Viper is written in Python and it requires Python 2.7 to function properly. In this documentation we will use Debian GNU/Linux based distributions, such as Ubuntu, as a reference platform. The following installation instructions should apply similarly to other distributions and possibly to Mac OS X as well, although it has not been properly tested.
Before proceeding, you should make sure you have the basic tools installed to be able to compile additional Python extensions:

Core dependencies

Viper makes use of a number of Python library for its core functioning, which can be installed with the command:

In addition you should install ssdeep with pydeep. After you downloaded the source code for ssdeep from the official website, proceed with the following:

Viper can retrieve files remotely through Tor, if you’re interested in such feature you should install SocksiPy:

You will also clearly need a running Tor daemon, refer to the official website for setup instructions.

Extra dependencies:
Please be aware that all the modules that are available in Viper might have their own dependencies that are unrelated to Viper’s core. We will try to make such dependencies available in our requirements.txt file that you can provide to pip:

In case a dependency is missing or it is not available on PyPi, you should be instructed by the module itself on how to retrieve and install it.

Usage:

 

Download v-1.2 : Master.zip  | Clone Url 
v-1.1 : v-1.1.zip | v-1.1.tar.gz
Source: http://viper.li/