Skip to content

C++ framework module to calculate file entropy.

Notifications You must be signed in to change notification settings

jkho/c_EntropyModule

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

42 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Entropy Calculation Module
Sleuth Kit Framework C++ Module
May 2012


This module is for the C++ Sleuth Kit Framework.


DESCRIPTION

This module is a file analysis module that performs an 
entropy calculation for the contents of a given file. Entropy
shows how random the file is and can be used to detect 
encrypted or compressed files.

DEPLOYMENT REQUIREMENTS

This module does not have any specific deployment requirements.

USAGE

Add this module to a file analysis pipeline.  See the TSK 
Framework documents for information on adding the module 
to the pipeline:

    http://www.sleuthkit.org/sleuthkit/docs/framework-docs/

This module takes no configuration arguments.  

RESULTS

The result of the calculation is written to an attribute
in the blackboard.

About

C++ framework module to calculate file entropy.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • C++ 100.0%