mirrors/CyberChef
1
0
Fork 0
mirror of https://github.com/gchq/CyberChef.git synced 2025-05-10 08:15:00 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Add support for LZNT1 decompression

Browse source 
Introduces support for LZNT1 decompression, commonly leveraged by malware through RtlDecompressBuffer (closes #534).

The decompression logic is ported from go-ntfs, the test data is similar to malduck's.

from: https://github.com/gchq/CyberChef/pull/1675
This commit is contained in:
bee-san 2023-12-27 12:41:09 +00:00
parent d7448c329f
commit cc86650786
6 changed files with 158 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

1
tests/operations/index.mjs
View file

@ -64,6 +64,7 @@ import "./tests/JSONtoCSV.mjs";
import "./tests/JWTDecode.mjs";
import "./tests/JWTSign.mjs";
import "./tests/JWTVerify.mjs";
import "./tests/LZNT1Decompress.mjs";
import "./tests/MS.mjs";
import "./tests/Magic.mjs";
import "./tests/Modhex.mjs";