Harbinger Logo

Harbinger

0
Free
Visit Website

Harbinger is a threat intelligence domain/IP/hash threat feeds checker that checks IPVoid, URLVoid, Virustotal, and Cymon. It can also be used in file analysis mode or single item mode. Usage: harbinger.py [-h] [-i IP] [-d DOMAIN] [-a HASH] [-fd FILE_DOMAIN] [-fi FILE_IP] [-fh FILE_HASH] [--api API] [--vtapi VTAPI] Threat Intelligence usage: harbinger.py [-h] [-i IP] [-d DOMAIN] [-a HASH] [-fd FILE_DOMAIN] [-fi FILE_IP] [-fh FILE_HASH] [--api API] [--vtapi VTAPI] optional arguments: -h, --help show this help message and exit -i IP, --ip IP ip address to check -d DOMAIN, --domain DOMAIN domain to check -a HASH, --hash HASH hash to check -fd FILE_DOMAIN, --file-domain FILE_DOMAIN file with domain list to check. One per line. -fi FILE_IP, --file-ip FILE_IP file with ip list to check. One per line. -fh FILE_HASH, --file-hash FILE_HASH file with hash list to check. One per line. --api API API key to use --vtapi VTAPI VT API key to use

FEATURES

ALTERNATIVES

A tool for quick and effective Yara rule creation to isolate malware families and malicious objects.

A Python library for handling TAXII v1.x Messages and invoking TAXII Services.

MaxMind provides accurate IP geolocation and online fraud detection solutions to create safer digital experiences.

A threat hunting tool for Windows event logs to detect APT movements and decrease the time to uncover suspicious activity.

Intelligence feeds for cybersecurity professionals to stay informed about emerging threats and trends.

Check the reputation of an IP address to identify potential threats.

AbuseHelper is an open-source framework for receiving and redistributing abuse feeds and threat intel.

A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.