588 Open source projects that are alternatives of or similar to Vendor-Threat-Triage-Lookup

VirusTotal Full api

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Bringing you the best of the worst files on the Internet.

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Real-time Packet Observation Tool

Your Everyday Threat Intelligence

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Malware hashes for open source projects.

🐺 Malware analysis platform

Personal compilation of APT malware from whitepaper releases, documents and own research

A curated list of awesome YARA rules, tools, and people.

🔎 shodansploit > v1.3.0

IP address lookup service

Extract and aggregate threat intelligence.

VirusTotal Wanna Be - Now with 100% more Hipster

Information gathering & website reconnaissance | https://phishstats.info/

Python bindings for Yeti's API

XRay is a tool for recon, mapping and OSINT gathering from public networks.

🐺 Malware analysis platform

A helper to run OSINT queries & manage results continuously

Advanced Reconnaissance tool to enumerate attacking surface of the target.

Malware Sample Sources

Typescript Orm wrapper for Mongodb

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

The Ultimate OSINT and Threat Hunting Framework

Browser extension that uses intelligence to combat malicious websites by blocking them in real-time.

Scraps historical stock market data from Yahoo Finance (https://finance.yahoo.com/)

a parser and a builder to work with URI query string the right way in PHP

Searches online paste sites for certain search terms which can indicate a possible data breach.

A small query builder project designed to assist daily routines and speed up the process of communicating with the database.

Write-ups for FireEye's FLARE-On challenges

Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.

UEBA Solution for Insider Security. This repo is archived. Thanks!

A single tool to bruteforce pdf , zip and hashes very super fast tool developed with python3

An HTTP service for mapping IPv4 and IPv6 addresses to cities, countries & continents

Detecting Frauds in Online Transactions using Anamoly Detection Techniques Such as Over Sampling and Under-Sampling as the ratio of Frauds is less than 0.00005 thus, simply applying Classification Algorithm may result in Overfitting

hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hassh)

Virustotal Data to Timesketch

This library contains created mostly pure M-functions without any other languages.

Personal research and publication on malware families

Client-side Elasticsearch query generator and executor. Filter fields, find search suggestions, and paginate query results for your indicies using a simple, reactive, and high-level API

Java reader for the MaxMind DB format

Python MaxMind DB reader extension

Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"

Tree Extraction for JavaScript Object Graphs

PHP library to check Minecraft Servers Status

a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust

Intelligence Architecture Mind Map

Repository for threat hunting and detection queries, tools, etc.

A Go port of Rack's query string parser

Java-layer Android Malware Simplifier

3D scene graph generator implemented in Pytorch.

JSON Selector - fast and easy to use JSON selector

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

asyncio-compatible Python module for retrieving and parsing WHOIS information for any domain.

A cross-platform TCP port forwarder with Duo 2FA and Geo-IP integration

Laravel package to dump all running queries on the page.

Allows you to connect to external databases and perform db queries

A fast and modern graphql client designed with simplicity in mind.