Pinned Repositories
cbinterface2
Library and command line tool for interacting with Carbon Black environments.
ACE
Analysis Correlation Engine
ace-metrics
A lib for measuring ACE based IDR operations
anyrunapi
ANY.RUN Malware Hunting Service API tool.
ip-inspector
IP inspector is an IPv4 and IPv6 address metadata enricher and tracking tool. Use it on the command line and leverage it as a library.
SIP-ThreatFox-Collector
ThreatFox intel collector for the Simple Intel Platform.
ThreatFox
Python library and command line tool for interacting with the ThreatFox API.
urlscan_collector
A urlscan.io intel collector for SIP environments.
seanmcfeely's Repositories
seanmcfeely/ThreatFox
Python library and command line tool for interacting with the ThreatFox API.
seanmcfeely/anyrunapi
ANY.RUN Malware Hunting Service API tool.
seanmcfeely/SIP-ThreatFox-Collector
ThreatFox intel collector for the Simple Intel Platform.
seanmcfeely/urlscan_collector
A urlscan.io intel collector for SIP environments.
seanmcfeely/ACE
Analysis Correlation Engine
seanmcfeely/ace-metrics
A lib for measuring ACE based IDR operations
seanmcfeely/ace-reporter
Some code I wrote to automate periodic ace metric reporting.
seanmcfeely/ace2-ams
seanmcfeely/ip-inspector
IP inspector is an IPv4 and IPv6 address metadata enricher and tracking tool. Use it on the command line and leverage it as a library.
seanmcfeely/ace2-core
An upgrade to the ACE project I was working on at one point.
seanmcfeely/asset-tracking
seanmcfeely/cbinterface
command line tool for interfacing with multiple carbonblack environments to perform analysis and live response functions
seanmcfeely/custom_splunk_based_ace_modules
Splunk based ACE correlation modules for custom use cases.
seanmcfeely/eventsentry
A suite of tools that parses intel from phish, sandbox reports, and other artifacts to create analyst-friendly wiki writeups.
seanmcfeely/falcon-sandbox
Python client library and command line tool for the Falcon Sandbox API
seanmcfeely/gglsbl-rest-client
Simple python client for the gglsbl-rest service.
seanmcfeely/lerc
A client to help with live response collection
seanmcfeely/pottery
Redis for humans. 🌎🌍🌏
seanmcfeely/PySocksipyChain
Modified socks.py which supports chained proxies
seanmcfeely/RotL
seanmcfeely/secimport
Secure import for python modules using dtrace
seanmcfeely/SIP-Cofense-Collector
seanmcfeely/sip-indicator-management
seanmcfeely/SipCbrAce
Search Carbon Black Response for SIP indicators based on indicator criteria. Alerts sent to the ACE platform.
seanmcfeely/sipit
command line interface for adding indicators and querying different aspects of SIP
seanmcfeely/sipwhitelist
Library that interacts with SIP to build an indicator whitelist system.
seanmcfeely/url_click
A script for submitting urls seen on the carbonblack command line to cloudphish
seanmcfeely/urlfinderlib
Python library for finding and validating URLs in documents and arbitrary data
seanmcfeely/urlscanio
CLI tool which uses URLScan to scan websites and download corresponding screenshots and DOMs.
seanmcfeely/vt-ace-agent