from IPython.core.display import Image from IPython.core.display import HTML from IPython.lib.display import YouTubeVideo !open https://code.google.com/p/grr/ !open https://twitter.com/bigsnarfdude !open https://github.com/bigsnarfdude Image(filename="/Users/antigen/Desktop/bigsnarfhadoopstack1.png") Image(filename="/Users/antigen/Desktop/bigsnarfjourney.png") !open http://www.sleuthkit.org/tsk_hadoop/ !open http://plaso.kiddaland.net/ !open http://scikit-learn.org/stable/ !open http://drops.dagstuhl.de/opus/volltexte/2013/3790/pdf/dagrep_v002_i009_p109_s12371.pdf !open http://ssdeep.sourceforge.net/ !open http://dfrws.org/2006/proceedings/12-Kornblum.pdf !open https://github.com/jeffbryner/pyioc !open https://www.hackerschool.com/ !open https://blogs.sans.org/computer-forensics/files/2012/04/Memory-Forensics-Cheat-Sheet-v1.pdf X = np.array([0,1,2,3,4]) Y = np.array([3,5,4,6,7]) plot(X,Y) !open https://volatility.googlecode.com/svn/branches/scudette/docs/tutorial.html apt1_md5s = open('/root/Desktop/APT1md5').readlines() apt1_set_list = set([i.strip('\n') for i in apt1_md5s[0:]]) apt1_set_list memory_executables_MD5 = open('/root/Desktop/asdf/file.txt').readlines() memory_executables_MD5_set_list = set([i.split()[0] for i in memory_executables_MD5[0:]]) memory_executables_MD5_set_list apt1_set_list.intersection(memory_executables_MD5_set_list) !open http://www.nsrl.nist.gov/Downloads.htm !open http://virusshare.com/hashes/ !open http://threatthoughts.com/2013/01/28/konig-malware-graph-theory-and-fuzzy-hashes/ !open http://ssdeep.sourceforge.net/ !open http://jessekornblum.com/presentations/cdfsl07.pdf !open http://volatility-labs.blogspot.ca/2012/09/movp-11-logon-sessions-processes-and.html !open http://computer-forensics.sans.org/summit-archives/2012/android-mind-reading-memory-acquisition-and-analysis-with-lime-and-volatility.pdf !open http://www.martau.com/installation-monitor.php HTML("