threathive's repositories

urlhaus

urlhaus api client

Language:PythonStargazers:5Issues:2Issues:0
Language:PythonLicense:MITStargazers:0Issues:1Issues:0

capa

The FLARE team's open-source tool to identify capabilities in executable files.

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

CAPEv2

Malware Configuration And Payload Extraction

Language:PythonLicense:NOASSERTIONStargazers:0Issues:1Issues:0

dhp

Simple Docker Honeypot server emulating small snippets of the Docker HTTP API

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

ditto

A tool for IDN homograph attacks and detection.

Language:GoLicense:NOASSERTIONStargazers:0Issues:1Issues:0

dmon

A little app to monitor domains

Language:PythonStargazers:0Issues:2Issues:9

domain_generation_algorithms

Some results of my DGA reversing efforts

Language:PythonLicense:GPL-2.0Stargazers:0Issues:1Issues:0

EmerSearch

Search Emercoin NVS records

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Language:PythonLicense:GPL-3.0Stargazers:0Issues:1Issues:0

flare-fakenet-ng

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

License:Apache-2.0Stargazers:0Issues:0Issues:0

flare-qdb

Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.

Language:PythonLicense:Apache-2.0Stargazers:0Issues:1Issues:0

httpreplay

Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.

Language:PythonLicense:NOASSERTIONStargazers:0Issues:1Issues:0
Stargazers:0Issues:0Issues:0

kit_hunter

A basic phishing kit scanner for dedicated and semi-dedicated hosting

Language:PythonLicense:GPL-3.0Stargazers:0Issues:1Issues:0

loguru

Python logging made (stupidly) simple

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

malwarebazaar

Malware Bazaar Python Client

Stargazers:0Issues:2Issues:0

medusa

Binary instrumentation framework based on FRIDA

Language:PythonStargazers:0Issues:1Issues:0

miasm

Reverse engineering framework in Python

Language:PythonLicense:GPL-2.0Stargazers:0Issues:1Issues:0

netinfo

Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.

Language:PythonLicense:MITStargazers:0Issues:0Issues:0

passivedns

A network sniffer that logs all DNS server replies for use in a passive DNS setup

Language:CStargazers:0Issues:0Issues:0

peframe

PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.

Language:YARAStargazers:0Issues:1Issues:0

phishpond

Because phishtank was taken.. explore phishing kits in a contained environment!

Language:PHPLicense:BSD-3-Clause-ClearStargazers:0Issues:1Issues:0

PyPDNS

Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.

Language:PythonLicense:NOASSERTIONStargazers:0Issues:1Issues:0

sflock

Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.

Language:PythonStargazers:0Issues:1Issues:0

socks5man

Socks5man is a Socks5 management tool and Python library

Language:PythonLicense:GPL-3.0Stargazers:0Issues:1Issues:0

StalkPhish

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Language:PythonLicense:AGPL-3.0Stargazers:0Issues:0Issues:0

Tools

Combination of different utilities, have fun!

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

VMwareCloak

A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.

License:GPL-2.0Stargazers:0Issues:0Issues:0

vpnrotator

VPN Rotator

Language:ShellLicense:BSD-2-ClauseStargazers:0Issues:0Issues:0