mrippey

Japan

Pinned Repositories

Almost-APT
Almost-APT provides detailed information on more than 70 cyber threat groups that have not yet been designated as an APT. Some of the information returned includes, TTP's, industries or sectors targeted, naming overlaps, and more!
Language:HTML20
almostapt-api
API for AlmostAPT project
Language:Python00
DomainSpotter
Language:Python2 1 00
email-watch
Tool to find registered domains via reverse WHOIS by email. Additionally, users can view DNS resolution and certificate info (if applicable) by selecting a domain.
Language:Python20
infratrack
Language:Python60
Microsoft-threat-protection-Hunting-Queries
Sample queries for Advanced hunting in Microsoft Threat Protection
Language:Jupyter Notebook2 0 00
My_Azure_Sentinel_Queries
10
NixWatch
*Nix Indicator of Compromise (IOC) Assessment Tool
Language:Python11
Sliver_Venom
Search for Sliver C2 infrastructure with JARM hashes
Language:Python10

mrippey's Repositories

mrippey/infratrack
Language:Python60
mrippey/Almost-APT
Almost-APT provides detailed information on more than 70 cyber threat groups that have not yet been designated as an APT. Some of the information returned includes, TTP's, industries or sectors targeted, naming overlaps, and more!
Language:HTML20
mrippey/DomainSpotter
Language:Python2 1 00
mrippey/email-watch
Tool to find registered domains via reverse WHOIS by email. Additionally, users can view DNS resolution and certificate info (if applicable) by selecting a domain.
Language:Python20
mrippey/Microsoft-threat-protection-Hunting-Queries
Sample queries for Advanced hunting in Microsoft Threat Protection
Language:Jupyter Notebook2 0 00
mrippey/My_Azure_Sentinel_Queries
10
mrippey/NixWatch
*Nix Indicator of Compromise (IOC) Assessment Tool
Language:Python11
mrippey/Sliver_Venom
Search for Sliver C2 infrastructure with JARM hashes
Language:Python10
mrippey/almostapt-api
API for AlmostAPT project
Language:Python00
mrippey/block_or_not
Language:Python
mrippey/C2Safari
An early version (beta) script to pull down possible C2 servers using a set of pre-defined Shodan queries.
Language:Python
mrippey/cat-py-em
Emulate the "cat" command in Python
Language:Python
mrippey/Check-Mal-URL
Language:Python
mrippey/firstcontact
Initial triage of a suspicious file in Python
Language:Python
mrippey/Get-Exit-Nodes
Python script to parse a list of Tor exit nodes, and write output to text file.
Language:Python
mrippey/google-alert-tranlsator
Translate foreign language Google Alert feed
Language:Python
mrippey/InfraWatch
Language:Python
mrippey/IP-Pursuit
Another Python CLI tool to gather information on suspicious IP addresses from multiple API sources.
Language:Python
mrippey/js-yara-rules
Yara rules for malicious javascript files from public repositories or written by me.
Language:YARA
mrippey/Jupyter_Email_Analysis
Language:Jupyter Notebook
mrippey/maltrail
Malicious traffic detection system
mrippey/mrippey
mrippey/Python100Days
TalkPython & PyBites 100 Days of Code Course
Language:Python
mrippey/reverse_dns_lookup
Language:Python1
mrippey/rules-all
mrippey/Scrape-With-Httpx
Quick Example of Using Httpx Module Along With BeautifulSoup for Web Scraping
Language:Python
mrippey/sigma
Generic Signature Format for SIEM Systems
mrippey/SinkholeRadar
Inspired by a blog post from The Vertex Project, SinkholeRadar accepts an IPV4 address, checks if headers indicative of a sinkhole are found, and returns relevant information.
Language:Python
mrippey/WebJS_ID
Identify websites running suspicious JavaScript code courtesy of the PublicWWW API.
Language:Python
mrippey/Whats-New
File Discovery for Windows & *Nix
Language:Python