-
ace-metrics Public
A lib for measuring ACE based IDR operations
-
-
ip-inspector Public
IP inspector is an IPv4 and IPv6 address metadata enricher and tracking tool. Use it on the command line and leverage it as a library.
-
secimport Public
Forked from avilum/secimportSecure import for python modules using dtrace
Python MIT License UpdatedOct 27, 2022 -
ace2-core Public
Forked from unixfreak0037/ace2-coreAn upgrade to the ACE project I was working on at one point.
Python Apache License 2.0 UpdatedOct 14, 2022 -
-
pottery Public
Forked from brainix/potteryRedis for humans. 🌎🌍🌏
Python Apache License 2.0 UpdatedMay 2, 2022 -
SIP-ThreatFox-Collector Public
ThreatFox intel collector for the Simple Intel Platform.
-
Splunk based ACE correlation modules for custom use cases.
Python UpdatedApr 8, 2022 -
-
urlscan_collector Public
A urlscan.io intel collector for SIP environments.
Python GNU General Public License v3.0 UpdatedMar 19, 2022 -
urlscanio Public
Forked from Aquarthur/urlscanioCLI tool which uses URLScan to scan websites and download corresponding screenshots and DOMs.
Python MIT License UpdatedMar 16, 2022 -
PySocksipyChain Public
Forked from pagekite/PySocksipyChainModified socks.py which supports chained proxies
Python Other UpdatedJan 28, 2022 -
ace-reporter Public
Some code I wrote to automate periodic ace metric reporting.
Python UpdatedJan 20, 2022 -
ThreatFox Public
Python library and command line tool for interacting with the ThreatFox API.
-
-
lerc Public
Forked from ace-ecosystem/lercA client to help with live response collection
Python Apache License 2.0 UpdatedJul 14, 2021 -
-
ACE Public
Forked from ace-ecosystem/ACEAnalysis Correlation Engine
Python Apache License 2.0 UpdatedFeb 18, 2020 -
sipwhitelist Public
Forked from ace-ecosystem/sipwhitelistLibrary that interacts with SIP to build an indicator whitelist system.
Python Apache License 2.0 UpdatedJan 5, 2020 -
sipit Public
Forked from ace-ecosystem/sipitcommand line interface for adding indicators and querying different aspects of SIP
Python Apache License 2.0 UpdatedJan 5, 2020 -
urlfinderlib Public
Forked from ace-ecosystem/urlfinderlibPython library for finding and validating URLs in documents and arbitrary data
Python Apache License 2.0 UpdatedDec 23, 2019 -
falcon-sandbox Public
Forked from ace-ecosystem/falcon-sandboxPython client library and command line tool for the Falcon Sandbox API
Python Apache License 2.0 UpdatedNov 22, 2019 -
gglsbl-rest-client Public
Simple python client for the gglsbl-rest service.
Python Apache License 2.0 UpdatedOct 17, 2019 -
eventsentry Public
Forked from IntegralDefense/eventsentryA suite of tools that parses intel from phish, sandbox reports, and other artifacts to create analyst-friendly wiki writeups.
Python Apache License 2.0 UpdatedSep 16, 2019 -
SipCbrAce Public
Search Carbon Black Response for SIP indicators based on indicator criteria. Alerts sent to the ACE platform.
Python UpdatedJul 22, 2019 -
-
cbinterface Public
Forked from IntegralDefense/cbinterfacecommand line tool for interfacing with multiple carbonblack environments to perform analysis and live response functions
Python Apache License 2.0 UpdatedJun 18, 2019 -
-
url_click Public
Forked from IntegralDefense/url_clickA script for submitting urls seen on the carbonblack command line to cloudphish
Python Apache License 2.0 UpdatedJan 30, 2019