MASTIFF is a static analysis framework which automates the process of extracting key characteristics from a number of different file formats. To ensure the framework remains flexible and extensible, a community-driven set of plugins is used to perform file analysis and data extraction. While originally designed to support malware, intrusion, and forensic analysis, the framework is well-suited to support a broader range of analytic needs. In a nutshell, MASTIFF allows analysts to focus on analysis rather than figuring out how to parse files.
|Tags||Forensics malware analysis incident response Information Security|
MASTIFF has migrated from sourceforge.net to a Git repository located at https://git.korelogic.com/mastiff.git/. To download the latest dev version of MASTIFF, you can clone it by: git clone https://git.korelogic.com/mastiff.git
Release Notes: This release adds a queue capability, changes the fuzzy hashing library, and has multiple other features and bugfixes.
Release Notes: This is the initial release of MASTIFF.