PyIntelOwl Logo

PyIntelOwl

0
Free
Visit Website

Robust Python SDK and Command Line Client for interacting with IntelOwl's API. Features Easy one-time configuration with self-documented help and hints along the way. Request new analysis for observables and files. Select which analyzers you want to run for every analysis you perform. Choose whether you want to HTTP poll for the analysis to finish or not. List all jobs or view one job in a prettified tabular form. List all tags or view one tag in a prettified tabular form. Tabular view of the analyzer_config.json and connector_config.json from IntelOwl with RegEx matching capabilities. Demo Installation: $ pip3 install pyintelowl For development/testing, pip3 install pyintelowl[dev] Quickstart As Command Line Client: On successful installation, The pyintelowl entry script should be directly invokable. For example, $ pyintelowl Usage: pyintelowl [OPTIONS] COMMAND [ARGS]... Options: -d, --debug Set log level to DEBUG --version Show the version and exit. -h, --help Show this message and exit. Commands: analyse Send a new analysis request analyzer-healthcheck Send a health check request for an analyzer... config Set or view config variables connector-healthcheck Send a health check req

FEATURES

ALTERNATIVES

OpenIOC editor for building and manipulating threat intelligence data with support for various systems.

A collection of Yara rules for the Burp Yara-Scanner extension to identify malicious software on websites.

A container of PCAP captures mapped to the relevant attack tactic

Home for rules used by Elastic Security with code for unit testing, Kibana integration, and Red Team Automation.

Automatically create yara rules based on images embedded in office documents.

Repository of Yara Rules created by TjNel.

Provides indicators of compromise (IOCs) to combat malware with Yara and Snort rules.

A PowerShell script to interact with the MITRE ATT&CK Framework via its own API using the deprecated MediaWiki API.

PINNED