Dr.Web VxCube API客户端
vxcube-api的Python项目详细描述
vxcube api包
vxcube api是一个用于与web博士vxcube交互的api客户端。
安装
Python2.7或更高版本需要提前安装。 从python包索引(pypi)安装vxcube api:
$ pip install -U vxcube-api
或来源:
$ python setup.py install
使用命令行
Dr.WebVxCubeAPI客户端支持命令行。要获取有关可用命令的信息,请使用--help:
$ vxcube_client --help
“命令列表:
| Command | Description |
|---|---|
| login | Get an API key which must be specified in all other commands |
| config | Save or delete ^{ |
| upload | Upload sample to Dr.Web vxCube server |
| analyse | Analyse uploaded file |
| delete | Delete analysis results |
| download sample | Download sample |
| download archive | Download archive with analysis results |
| subscribe_analysis | Get real-time data about analysis progress |
示例:
$ vxcube_client config --api-key aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee
$ vxcube_client upload /path/to/sample
Sample uploaded successful:
sample_path [id: 2342]
- format: exe
- platforms: ['winxpx86', 'win7x86', 'win7x64', 'win10x64']
$ vxcube_client analyse 2342 -p win7x86 -p win10x64 --time 30
$ vxcube_client subscribe_analysis 1516
...
[win7x86 ][50%] Waiting for the 3580(0xdfc) process to be dumped...
[win10x64][20%] File is running (19 of 30 sec remaining)...
...
All tasks finished:
Task[48151]-win7x86 [successful] maliciousness: 0
Task[62342]-win10x64 [successful] maliciousness: 25vxcubeapi类
您可以编写自己的脚本,用vxcubeapi类处理文件。
fromvxcube_apiimportVxCubeApiAPI_KEY="aaaaaaaa-bbbb-cccc-dddd-eeeeeeeeeeee"defmain():# Сreate VxCubeApivxcube=VxCubeApi(api_key=API_KEY)# Upload samplesample=vxcube.upload_sample("sample_path")msg="Sample uploaded successfully: {sample.id}, {sample.format_name}, {sample.platforms}"print(msg.format(sample=sample))# Start analysisanalysis=vxcube.start_analysis(sample_id=sample.id,platforms=sample.platforms[0:2],analysis_time=30)formsg_objinanalysis.subscribe_progress():print(msg_obj)# Print resultsprint("Analysis finished")msg="Task[{task.id}] is {task.status}. Maliciousness: {task.maliciousness}"fortaskinanalysis.tasks:print(msg.format(task=task))if__name__=='__main__':main()
更多示例
还有更多的用法示例here。
欢迎加入QQ群-->: 979659372
