Geej Posted June 4, 2011 Share Posted June 4, 2011 (edited) HomepageTrID is an utility designed to identify file types from their binary signatures. While there are similar utilities with hard coded logic, TrID has no fixed rules. Instead, it's extensible and can be trained to recognize new formats in a fast and automatic way. TrID has many uses: identify what kind of file was sent to you via e-mail, aid in forensic analysis, support in file recovery, etc. TrID uses a database of definitions which describe recurring patterns for supported file types. As this is subject to very frequent update, it's made available as a separate package. Just download both TrID and this archive and unpack in the same folder.The database of definitions is constantly expanding; the more that are available, the more accurate an analysis of an unknown file can be. You can help! Use the program to both recognize unknown file types and develop new definitions that can be added to the library. See the TrIDScan page for information about how you can help. Just run the TrIDScan module against a number of files of a given type. The program will do the rest. Because TrID uses an expandable database it will never be out of date. As new file types become available you can run the scan module against them and help keep the program up to date. Other people around the world will be doing the same thing making the database a dynamic and living thing. If you have special file formats that only you use, you can also add them to your local database, making their identification easier. TrID is simple to use. Just run TrID and point it to the file to be analyzed. The file will be read and compared with the definitions in the database. Results are presented in order of highest probability. This addon includes:Start menu shortcut + Uninstallable in Add/Remove PanelCurrent library of definitions is up to 4320 file types.My humble batch file for you to perfrom drag and drop. * thanks to jaclaz at MSFN Forum for the code improvement. - now can drag into batch file too.(Utilise nircmd.exe to keep "console always on top" for drag & drop operation. Nircmd is excluded in the addon. It is preferred to be in %path% environment)TrID_File_Identifier_inf_addon.cabSize: 463.15 Kb (474,261 bytes)MD5: 8FC00A895CF06902E5BAC6DE61C016A1You can test as follow: Just rename bliss.bmp to bliss.exe and drag bliss.exe to the console box and see it's binary signature.*edit: Minor update on 7 June to reflect changes to batch file Edited June 7, 2011 by Geej Quote Link to comment Share on other sites More sharing options...
Geej Posted June 5, 2011 Author Share Posted June 5, 2011 Updated to reflect improved batch code. Quote Link to comment Share on other sites More sharing options...
Geej Posted June 6, 2011 Author Share Posted June 6, 2011 (edited) Updated again to reflect improved batch code.#edit2nd time updated again to reflect improved batch code. Edited June 7, 2011 by Geej Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.