Sooty
WALKOFF
Sooty | WALKOFF | |
---|---|---|
1 | 1 | |
1,289 | 1,157 | |
- | - | |
0.0 | 0.0 | |
7 months ago | over 1 year ago | |
Python | Python | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Sooty
-
A user has opened an attachment in a phishing email (MIME file, possibly .pdf). Our antivirus isn't finding anything, and there are no clear indications of compromise. We don't have a clear policy to respond to things like this. What would you do?
I haven't played with this yet, but it looks promising for trying to automate your OSINT when researching phishing emails: https://github.com/TheresAFewConors/Sooty
WALKOFF
-
Current college student here. What is it like to work for defense contractors?
As for quirks, the biggest quirk is that you usually need to get a security clearance, and that means no drugs. As far as the tech goes, depends on what company you're working for and what government product they produce. If it's software for an otherwise physical product like a missile or an AGV, then it's probably gonna be some old stable language like C, with something like Java being used on the server side to talk to the machine. Meanwhile, there's definitely Python work sprinkled all throughout everything, and there's certainly parts of the government working on Docker or Kubernetes stuff. Like here's a completely unclassified government project that I've contributed to. It uses Docker and Yaml to automate tasks.
What are some alternatives?
MultiQC - Aggregate results from bioinformatics analyses across many samples into a single report.
Shuffle - Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
PhishingKitTracker - Let's track phishing kits to give to research community raw material to study !
infinitic - Infinitic is a scalable workflow engine for distributed services. It shines particularly by making complex orchestration simple. It can be used to reliably orchestrate microservices, manage distributed transactions, operates data pipelines, builds user-facing automation, etc.
spate - Quickly create workflows, business and process automation pipelines. Supports API, UI and Cron based workflows.
cadence-python - Python framework for Cadence Workflow Service
Spoofy - Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
maasta - MAAS Terraform Ansible
STARS - A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
ssh-script-dashboard - An interface for executing scripts locally, or remotely over SSH
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
github-leak-audit - A GitHub workflow to identify employees that have leaked your organization's code