v2.3 - Objective-See
Added the ability to query Objective-See's malware list.
Warning: This is a hack due to the fact that:
- There is no real API (that I know of)
- The malware json list is downloaded prior to any look-ups occurring
- The SHA256 hashes are extracted from VirusTotal links inside the json file; so, can only query on SHA256 hashes. Not all of the samples have a VT link thus some will be skipped.
- The zip files contain multiple files; so, must pass the
--noextraction
flag in order to download the sample from Objective-See