Hey hey
I am trying to modify the file extraction module and to understand this module better…
This module extracts multiple file types by default, where should I comment or change the configuration to ignore some file types ( let’s say image/png or application/x-dosexec ) , what I’ve loaded so far in local.zeek is only /packages/file-extraction/plugins/extract-common-exploit-types.zeek which contains some file types, but I see more types extracted.
Every file type from base/frameworks/files/magic is extracted by default ?
Also, if I want to add other file types / mime_types ( docs or elf ) what do I need to modify or add ?
Thanks for kipping this community so strong <3 and see you in Munich