Maltrail Logo

Maltrail

0
Free
Visit Website

Maltrail is a malicious traffic detection system that utilizes publicly available blacklists, static trails from various AV reports, and custom user-defined lists to detect malicious and suspicious activities such as domain names, URLs, IP addresses, and HTTP User-Agent header values. It also employs advanced heuristic mechanisms for discovering unknown threats.

FEATURES

ALTERNATIVES

Maltego transform pack for analyzing and graphing Honeypots using MySQL data.

A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.

A Python library for interacting with TAXII servers

Aggregates security threats from online sources and outputs to various formats.

Real-time monitoring tool for newly issued SSL certificates.

A project focusing on understanding and combating threats to the Internet economy and net citizens.

A minimalistic Java library for representing threat model data in a normalized way and automating threat intelligence extraction.

Threat hunting tool leveraging Windows events for identifying outliers and suspicious behavior.