2248 Open source projects that are alternatives of or similar to Python Iocextract

Extract and aggregate threat intelligence.

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Signature base for my scanner tools

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

🐺 Malware analysis platform

recon-ng modules for Censys

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

Malware hashes for open source projects.

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Bringing you the best of the worst files on the Internet.

A curated list of awesome YARA rules, tools, and people.

Citizen Lab Malware Reports

Loki - Simple IOC and Incident Response Scanner

Phishing catcher using Certstream

internet monitoring osint telegram bot for windows

Defund the Police.

OSINT Threat Intel Interface - CLI for HoneyDB

Yara rules written by me, for free use.

🐺 Malware analysis platform

CLI tool for open source and threat intelligence

This repo contains logstash of various honeypots

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

MISP trainings, threat intel and information sharing training materials with source code

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

base64 encoding and decoding with c++

Detect and decode encoded strings, recursively.

The OSINT Omnibus (beta release)

The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.

🚀⚡ Kotlin SharedPreferences wrapper & cryptographic preferences android library.

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

Standard-Format Threat Intelligence Feeds

multi base encoding/decoding utility

Signatures and IoCs from public Volexity blog posts.

A helper to run OSINT queries & manage results continuously

A simple many-rules to many-files YARA scanner for incident response or malware zoos.

Hashes of infamous malware

Tracking APT IOCs

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

A Binary Genetic Traits Lexer Framework

BeFoR64, Base64 encoding/decoding library for FoRtran poor men

#ThreatHunting #DFIR #Malware #Detection Mind Maps

A simple threat hunting tool based on osquery, Salt Open and Cymon API

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Small universal base64 functions for node.js and browsers

Virustotal Data to Timesketch

Don't Just Search OSINT. Sweep It.

Malware Sample Sources

Malice Yara Plugin

All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns

The Ultimate OSINT and Threat Hunting Framework

Threat research and reporting from IronNet's Threat Research Teams

Best practices in threat intelligence

Collecting IOCs posted on Twitter

Funnel is a lightweight yara-based feed scraper

Ayashige provides a list of suspicious newly updated domains as a JSON feed

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Secure, audited & 0-deps implementation of bech32, base64, base32, base16 & base58