jasonsford / IPScraper
This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest data. Response that do not return empty results are reformatted as comma separated values and written to CSV
☆18Updated 3 weeks ago
Alternatives and similar repositories for IPScraper:
Users that are interested in IPScraper are comparing it to the libraries listed below
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆19Updated last year
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 3 months ago
- ☆21Updated 3 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆33Updated 3 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated last month
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆39Updated 10 months ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 3 years ago
- Incident Response Network Tools☆24Updated 3 years ago
- A script to create and assign SOP tasks into the cases☆19Updated 4 years ago
- Logbook for Digital Forensics and Incident Response☆50Updated 8 months ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Updated 3 years ago
- Library of threat hunts to get any user started!☆42Updated 4 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Updated 4 years ago
- Azure function to insert MISP data in to Azure Sentinel☆31Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆22Updated 2 months ago
- Slides of my public talks☆54Updated last year
- ESXi Cyber Security Incident Response Script☆23Updated 6 months ago
- CSIRT Jump Bag☆27Updated 10 months ago
- Threat Hunter's Knowledge Base☆22Updated 3 years ago
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- A home for detection content developed by the delivr.to team☆67Updated last month
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Updated 4 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆34Updated 2 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆37Updated last year
- Cyber Threats Detection Rules☆14Updated 2 months ago