scrings
| Crates.io | scrings |
| lib.rs | scrings |
| version | 0.1.3 |
| source | src |
| created_at | 2024-12-12 15:32:11.994738 |
| updated_at | 2024-12-12 15:32:11.994738 |
| description | Semantic strings based on tree-sitter |
| homepage | |
| repository | https://github.com/airbus-cert/scrings |
| max_upload_size | |
| id | 1481349 |
| size | 67,916 |
Sylvain Peyrefitte (citronneur)
documentation
README
scrings
Semantic scanner based on tree-sitter
scrings is a strings utility that will output only semantically valid strings based on tree-sitter grammar. For each script language we made a list of semantic nodes discriminant enough to detect the target language.
Python bindings are available in the pyscrings package.
A Volatility 3 plugin is also available to leverage memory dump analysis.
Usage
scrings is available through a command line utility like strings:
scrings --path [PATH_TO_DUMP] -o -l powershell
...
151297294 $eiD=-join'ylbmessA'[-1..-8];$JOD=-join'epyTteG'[-1..-7]
...
scrings is also available through a volatility plugin to leverage memory analysis technics.
Supported languages
- Python ✅
- Javascript ✅
- Powershell ✅
- PHP ✅
- Bash ✅
- SQL ✅
- VBS ❌ (ongoing)
Build
scrings is made in Rust 🦀.
⚠️ Use nightly version of Rust ⚠️
To built scrings you must rely on cargo :
git clone https://github.com/airbus-cert/scrings
cd scrings
cargo build --package scrings --bin scrings --features=scrings