Stringlifier: An Open Source Tool for Random String Classification

While shifting from traditional log analysis towards a data science-based approach, security professionals often battle with complex random strings in logs/commands/codes, which makes statistical analysis cumbersome. For example, can you differentiate between 7f41suf9312, 32185544-ABC3123-9845678, GCEFi519719312? These could be passwords, API keys or hashes. Stringlifier is an open-source tool that assists in categorizing such strings. It leverages machine learning to distinguish between normal and random character sequences and it provides fine-grained classifications to assist professionals in characterizing strings in raw text. During this presentation we will have a series of hands-on exercises on how to sanitize your data, process/classify random strings, and identify leaked credentials in public repositories.

#DFIR #OpenSource #OpenSourceTool