JCyberSec / CTIURLScanLinks
CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, automatic extraction of API items to allow for easier ingestion later on.
☆10Updated 4 years ago
Alternatives and similar repositories for CTIURLScan
Users that are interested in CTIURLScan are comparing it to the libraries listed below
Sorting:
- Yara scan Phishing Kit's Zip archive(s)☆61Updated 3 months ago
- Website crawler with YARA detection☆90Updated 2 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Converting data from services like Censys and Shodan to a common data model☆50Updated 3 months ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Updated 5 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- GreyNoise Maltego integration and transforms☆20Updated 2 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆60Updated 4 months ago
- ☆25Updated 3 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- Convert Wigle.net result from json to Kml☆15Updated 4 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Updated 5 years ago
- A tool designed to traverse phishing URL paths to search for phishing kit source code.☆92Updated 2 years ago
- Home to the ActorTrackr source code☆29Updated 8 years ago
- Reference sheet for Threat Hunting Professional Course☆25Updated 6 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated 2 years ago
- The Purpose of this research tool is to provide a Python client into RiskIQ API services.☆22Updated 4 years ago
- PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in …☆101Updated 3 years ago
- URL fingerprinting made easy☆89Updated last year
- Collection of best practices to add OSINT into MISP and/or MISP communities☆66Updated 2 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆27Updated 5 years ago
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆41Updated 2 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated this week
- Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…☆38Updated last year
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- Ayashige provides a list of suspicious newly updated domains as a JSON feed☆38Updated last year
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆57Updated last year
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 6 years ago