This tool is basically a Database of 780+ Magic Bytes (Files Signatures) with a 3 lines python wraper to find the type of any file you throw at it.
I wrote this tool for Hacking Competition purpose. However, you can use it for whatever you want. Feel free to tell me if any Magic Bytes in the "database" is wrong. You can update the dabase you have locally on your machine with a simple argument. Details below.
- Tested in Python 3.6, should work in all Python 3 version.
- Because a lot of files have the same Magic Bytes it is impossible (in most cases) to be 100% sure that the file you throwed at pyMagicBytes can be only one file type : This is why, when you call the GetPossibleTypes() function of a FileObject it will return an array containing all possible files types (with some additionnal informations). See below for more details.
- Classes
-
Download the repository
-
Install the requirement of the requests library (if you don't already have it) by calling the "pip install -r requirements.txt" command.
-
Use the sample code below Usage / Code Sample in the FileObject class below as an example. Enjoy.
Open a file stream of a given file you provided the Path in the constructor. It still works if you provide a relative path.
This example create a FileObject object then find the file type of the file which the path was specified in the constructor. The file types are sorted by the most probable file type to the less probable.
from pyMagicBytes import FileObject
obj = FileObject(r"SampleFile\file_example_AVI_480_750kB.avi")
ListOfPossibleFileTypes = obj.getPossibleTypes()This is the value of the variable ListOfPossibleFileTypes of the previous example when debugging with Visual Studio Code:
If you decided to set the optional argument 'ReturnArray' of the method 'getPossibleTypes()' to the value 'False', pyMagicBytes will return you a nice little printable string. Here is an example :
from pyMagicBytes import FileObject
obj = FileObject(r"SampleFile\file_example_AVI_480_750kB.avi")
ListOfPossibleFileTypes = obj.getPossibleTypes(ReturnArray=False)
print(ListOfPossibleFileTypes)The output of the previous example:
If you decided to specify that the argument 'updateDB' in the FileObject constructor is equal to 'True', then pyMagicBytes will update the DB you have locally with the most recent DB version on Github automatically. Here is an example:
from pyMagicBytes import FileObject
obj = FileObject(r"SampleFile\file_example_AVI_480_750kB.avi", updateDB=True)If you do so, you will see a nice little log telling you if everything worked as its suppose to:
