HoneyMalt is a Maltego transform pack designed for the analysis and graphing of Honeypots, starting with Kippo that uses MySQL. It allows exporting SQL data for visualization in Maltego graphs, utilizing native Maltego entities and requiring python modules like canari, MySQL Python Connector, and Python Geoip. Remote connections to Kippo MySQL instance need to be allowed by granting permissions. Installation involves cloning the repository, creating a profile, and specifying the path to the source folder.
FEATURES
SIMILAR TOOLS
Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.
A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.
Facilitating exchange of information and knowledge to collectively protect against cyberattacks.
Intelligence feeds for cybersecurity professionals to stay informed about emerging threats and trends.
Gathers Threat Intelligence Feeds from publicly available sources and provides detailed output in CSV format.
A command-line tool that fetches known URLs from various sources to identify potential security threats and vulnerabilities.
A simple, self-contained modular host-based IOC scanner for incident responders.
Cortex is a tool for analyzing observables at scale and automating threat intelligence, digital forensics, and incident response.
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.