Question 1

How to set up Malwarehouse with a PostgreSQL database?

Accepted Answer

After installing dependencies, create the database and user, then configure the connection string in malwarehouse.cfg using the SQLAlchemy URL format, e.g., postgresql://user:password@server/db, as detailed in the setup section.

Question 2

Malwarehouse vs Viper: which is better for malware analysis?

Accepted Answer

Malwarehouse is lighter and CLI-focused, ideal for individual analysts who prefer command-line efficiency, while Viper offers a web interface and more built-in features but may be heavier. Choose based on your team's preference for interface and needed automation.

Question 3

How to create a custom plugin for Malwarehouse?

Accepted Answer

Refer to the virus total plugin as a template; plugins are integrated to run automatically during analysis, but documentation is limited, so you might need to inspect the source code or example to understand the integration points.

Question 4

Does Malwarehouse support searching by tags or metadata?

Accepted Answer

Yes, you can search for samples by tags using the find command, and metadata like source and notes can be added during loading with options such as --tags and --notes, facilitating organized retrieval.

Question 5

Is Malwarehouse suitable for team use in a lab environment?

Accepted Answer

While it supports shared databases via SQLAlchemy, it lacks built-in user management and real-time collaboration features, making it better for individual or small teams with manual coordination, not large-scale multi-user setups.

Question 6

How to add metadata when loading a sample in Malwarehouse?

Accepted Answer

Use the load command with options like --source, --notes, and --tags, e.g., 'python malwarehouse.py load file.exe --source="email_attachment" --tags="phishing"', as shown in the usage examples for context-rich storage.

Malwarehouse

What is Malwarehouse?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions