horus
IntelOwl
horus | IntelOwl | |
---|---|---|
5 | 13 | |
207 | 3,138 | |
- | 1.8% | |
8.9 | 9.8 | |
9 days ago | 4 days ago | |
Python | Python | |
GNU General Public License v3.0 only | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
horus
- Horus: An OSINT / digital forensics tool built in Python (formerly 'Sentinel')
- Show HN: Horus – An OSINT / digital forensics tool built in Python
-
Tracking Snoop Dogg's $4M Crypto Wallet with My New Open Source Tool!
Sentinel is completely free and open source, so the only thing I ask of any potential users is a star, share, or even just a simple hello in our Discord server! Any contributions are welcome!
-
Sentinel – A Digital Forensics Tool
Hey everyone,
I am currently working on a tool called Sentinel. Sentinel is an all-in-one encompassing tool for investigations assistance, from API leveraging to compiling data. It is still a work in progress, but feel free to check out the GitHub page here: https://github.com/6abd/sentinel . Any contributions, whether it be helping develop a feature or suggesting one, are appreciated greatly.
IntelOwl
- Monthly Security Checklist
-
To GSoC and beyond...
Allowed bulk analysis of files as well as observables, leading to a more efficient workflow for IntelOwl users. #1032
-
IntelOwl 101
If you want to know how IntelOwl works and its underlying architecture visit their github and website
-
Threat detection
One thing I ran for a while was security onion and utilized port mirroring to mirror the uplink port from my primary switch to my LAN on my router, so I was catching anything coming into/out of my network destined for internet. I've also used ElastiFlow ( https://github.com/robcowart/elastiflow ) which is absolutely phenomenal and awesome, I did the same and it provides some great data. You could also leverage IntelOwl ( https://github.com/intelowlproject/IntelOwl ) , one thing I have added to all my VMs is a OSSEC agent, Wazuh to be specific which is free ( https://github.com/wazuh/wazuh ) and while I am not using it to its full potential such as monitoring file deletions/modifications etc it is a powerful tool.
- [Tool] Intel Owl new release v3.0.0 (FOSS threat intel solution)
- [Tool] Intel Owl v3.0.0, free and open source threat intelligence solution
- [FOSS] IntelOwl v2.3.0 is out!
- Intel Owl is an OSINT solution to get threat intelligence data about a specific file, an IP or a domain from a single API at scale (OS TIP)
-
IOCs Validation
https://github.com/intelowlproject/IntelOwl And MISP - however they both require a little bit of setup and such.
- Threat Intelligence
What are some alternatives?
Cortex - Cortex: a Powerful Observable Analysis and Active Response Engine
TheHiveDocs - Documentation of TheHive
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
PatrowlManager - PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
dumpulator - An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
pyintelowl - Robust Python SDK and Command Line Client for interacting with IntelOwl's API.
opensquat - The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains.
harpoon - CLI tool for open source and threat intelligence
Scrummage - The Ultimate OSINT and Threat Hunting Framework
pagodo - pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching
E4GL30S1NT - E4GL30S1NT - Simple Information Gathering Tool
evtx-hunter - evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.