Sooty
slides-talks
Sooty | slides-talks | |
---|---|---|
1 | 1 | |
1,284 | 36 | |
- | - | |
0.0 | 5.1 | |
7 months ago | 9 months ago | |
Python | ||
GNU General Public License v3.0 only | OpenSSL License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Sooty
-
A user has opened an attachment in a phishing email (MIME file, possibly .pdf). Our antivirus isn't finding anything, and there are no clear indications of compromise. We don't have a clear policy to respond to things like this. What would you do?
I haven't played with this yet, but it looks promising for trying to automate your OSINT when researching phishing emails: https://github.com/TheresAFewConors/Sooty
slides-talks
What are some alternatives?
MultiQC - Aggregate results from bioinformatics analyses across many samples into a single report.
attifyos - Attify OS - Distro for pentesting IoT devices
PhishingKitTracker - Let's track phishing kits to give to research community raw material to study !
SwiftyGPIO - A Swift library for hardware projects on Linux/ARM boards with support for GPIOs/SPI/I2C/PWM/UART/1Wire.
spate - Quickly create workflows, business and process automation pipelines. Supports API, UI and Cron based workflows.
SIEM - SIEM Tactics, Techiques, and Procedures
Spoofy - Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
uart-exploiter - uart-exploiter.py by [exploitsecurity.io]
STARS - A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
cytoflow - A Python toolbox for quantitative, reproducible flow cytometry analysis
autowpscan - Assistant work tool for wpscan.