Store and Analyze suspected files for known malware and suspicious behavior and write findings into Amazon AWS SimpleDB.
Highly modularized architecture based on the UNIX philosophy: Do only one thing and do it well.
Current modules:
- Sample storage to Amazon S3 service
- CWSandBox submission and result storing
- MediaWiki output module (create MediaWiki articles based on data from SimpleDB repository)
Some planned modules:
- VirusTotal submission and result storing
- PE Header analysis
- Executable call-graphing
- ...
