PhishingKitTracker
Sooty
PhishingKitTracker | Sooty | |
---|---|---|
1 | 1 | |
226 | 1,283 | |
- | - | |
0.0 | 0.0 | |
over 1 year ago | 6 months ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PhishingKitTracker
Sooty
-
A user has opened an attachment in a phishing email (MIME file, possibly .pdf). Our antivirus isn't finding anything, and there are no clear indications of compromise. We don't have a clear policy to respond to things like this. What would you do?
I haven't played with this yet, but it looks promising for trying to automate your OSINT when researching phishing emails: https://github.com/TheresAFewConors/Sooty
What are some alternatives?
espoofer - An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
MultiQC - Aggregate results from bioinformatics analyses across many samples into a single report.
HiddenEye-Legacy - Modern Phishing Tool With Advanced Functionality And Multiple Tunnelling Services [ Android-Support-Available ]
spate - Quickly create workflows, business and process automation pipelines. Supports API, UI and Cron based workflows.
URL-obfuscator - Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.
Spoofy - Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
typosquatted-domain-name-searcher - Searches for uregistered typosquatted domain names and uses computer vision to evalutate their fitness.
STARS - A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
cytoflow - A Python toolbox for quantitative, reproducible flow cytometry analysis
autowpscan - Assistant work tool for wpscan.
slides-talks - My own cybersecurity research talks/slides