AIL Framework
AIL (Analysis of Information Leaks) Framework is an open-source tool designed to analyze potential information leaks from unstructured data sources. It processes data from various sources, including pastes and data streams, to identify sensitive information. Key features include: - Modular architecture for handling structured and unstructured data - Support for external ZMQ feeds - URL detection and geolocation - Credit card number and credential leak detection - Email address extraction and validation - Tor .onion address extraction - Full-text indexing - YARA rule matching and retro-hunting - Decoding of encoded files - API key detection (AWS, Google) - Cryptocurrency address detection - Tagging system with MISP Galaxy and Taxonomies - Integration with MISP and TheHive for sharing threat intelligence - Correlation engine for visualizing relationships between extracted data - Web crawler for websites, forums, and Tor hidden services - Domain availability monitoring
FEATURES
ALTERNATIVES
CimSweep is a suite of CIM/WMI-based tools for incident response and hunting operations on Windows systems without the need to deploy an agent.
Detailed analysis of the event-stream incident and actions taken by npm Security.
A framework for accumulating, describing, and classifying actionable Incident Response techniques
Network Intelligence is a cybersecurity services provider offering comprehensive security solutions through their ADVISE framework, including detection and response, compliance, data privacy, and secure digital transformation services across multiple industries.
A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments.
TheHive is a case management platform for security operations teams that facilitates incident response, threat analysis, and team collaboration.
A System for Abuse- and Incident Handling with log file analysis capabilities.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.