UrlextractorInformation gathering & website reconnaissance | https://phishstats.info/
Stars: ✭ 341 (+32.68%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+722.57%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (+70.82%)
ir scriptsincident response scripts
Stars: ✭ 17 (-93.39%)
BeagleBeagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Stars: ✭ 976 (+279.77%)
PatrowlhearsPatrowlHears - Vulnerability Intelligence Center / Exploits
Stars: ✭ 89 (-65.37%)
ThreathuntThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.
Stars: ✭ 92 (-64.2%)
rhqRecon Hunt Queries
Stars: ✭ 66 (-74.32%)
OrianaOriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.
Stars: ✭ 152 (-40.86%)
YetiYour Everyday Threat Intelligence
Stars: ✭ 1,037 (+303.5%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (-12.84%)
OSINT-BrazucaRepositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Stars: ✭ 508 (+97.67%)
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-91.44%)
PockintA portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️
Stars: ✭ 196 (-23.74%)
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (-7%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (-73.15%)
fastfinderIncident Response - Fast suspicious file finder
Stars: ✭ 116 (-54.86%)
Vendor-Threat-Triage-LookupLookup file hashes, domain names and IP addresses using various vendors to assist with triaging potential threats.
Stars: ✭ 17 (-93.39%)
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (-47.86%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (+16.73%)
StalkphishStalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
Stars: ✭ 256 (-0.39%)
iocingestorAn extendable tool to extract and aggregate IoCs from threat feeds
Stars: ✭ 25 (-90.27%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-31.13%)
Misp TrainingMISP trainings, threat intel and information sharing training materials with source code
Stars: ✭ 185 (-28.02%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (-42.02%)
AsnASN / RPKI validity / BGP stats / IPv4v6 / Prefix / URL / ASPath / Organization / IP reputation and geolocation lookup tool / Traceroute server
Stars: ✭ 242 (-5.84%)
Chatterinternet monitoring osint telegram bot for windows
Stars: ✭ 123 (-52.14%)
ShogunShodan.io Command Line Interface
Stars: ✭ 42 (-83.66%)
evtx-hunterevtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
Stars: ✭ 122 (-52.53%)
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (-82.49%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (-12.45%)
XrayXRay is a tool for recon, mapping and OSINT gathering from public networks.
Stars: ✭ 1,666 (+548.25%)
pyarascannerA simple many-rules to many-files YARA scanner for incident response or malware zoos.
Stars: ✭ 23 (-91.05%)
osintDocker image for osint
Stars: ✭ 92 (-64.2%)
pybinaryedgePython 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/
Stars: ✭ 16 (-93.77%)
TA-Sysmon-deployDeploy and maintain Symon through the Splunk Deployment Sever
Stars: ✭ 31 (-87.94%)
PackratLive system forensic collector
Stars: ✭ 16 (-93.77%)
osint-combinerCombining OSINT sources in Elastic Stack
Stars: ✭ 77 (-70.04%)
common-osint-modelConverting data from services like Censys and Shodan to a common data model
Stars: ✭ 35 (-86.38%)
MEATThis toolkit aims to help forensicators perform different kinds of acquisitions on iOS devices
Stars: ✭ 101 (-60.7%)
RdpCacheStitcherRdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
Stars: ✭ 176 (-31.52%)
csirtg-smrt-v1the fastest way to consume threat intelligence.
Stars: ✭ 27 (-89.49%)
SarenkaOSINT tool - gets data from services like shodan, censys etc. in one app
Stars: ✭ 120 (-53.31%)
mail to mispConnect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Stars: ✭ 61 (-76.26%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-90.27%)
INDXRipperCarve file metadata from NTFS index ($I30) attributes
Stars: ✭ 32 (-87.55%)
sqhunterA simple threat hunting tool based on osquery, Salt Open and Cymon API
Stars: ✭ 64 (-75.1%)
CDIRCDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
Stars: ✭ 122 (-52.53%)
mmhdanCalculate fingerprints of a website for OSINT search
Stars: ✭ 35 (-86.38%)
Docker-TemplatesDocker configurations for TheHive, Cortex and 3rd party tools
Stars: ✭ 71 (-72.37%)
PowerGRRPowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
Stars: ✭ 52 (-79.77%)
uacUAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Stars: ✭ 260 (+1.17%)
Open-source-tools-for-CTIPublic Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
Stars: ✭ 91 (-64.59%)
EvilizeParses Windows event logs files based on SANS Poster
Stars: ✭ 24 (-90.66%)
ArgosThis script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Stars: ✭ 73 (-71.6%)
MemProcFS-AnalyzerMemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Stars: ✭ 89 (-65.37%)
PSTraceTrace ScriptBlock execution for powershell v2
Stars: ✭ 38 (-85.21%)