QRadio Logo

QRadio

0
Free
Visit Website

QRadio is a tool/framework designed to consolidate cyber threats intelligence sources. The goal of the project is to establish a robust modular framework for extraction of intelligence data from vetted sources. It uses multiple threat intelligence sources for searching supplied data. Currently we crawl the following: You can search by the following data types: Domain IPv4 Hash Imphash Mutex Threat Info databases: ThreatCrowd Virustotal Cymon IBM X-Force Exchange Metadefender #totalhash Sandboxes: Malwr Threatexpert Blacklists: ASPROX Tracker Feodot Tacker Zeus Tracker malc0de McAfee Other: FortiGuard hpHosts Credentials for sources /lib/config.py Usage python cli_qradio.py Options Output verbosity: Return CSV if not specified -v, --verbose - Show verbose output From Domain -100, --sonar_domain - SONAR <domain> to IPv4, Hash, Score, URL, Blacklist -102, --domain_to_ipv4 - Re

FEATURES

ALTERNATIVES

A simple, self-contained modular host-based IOC scanner for incident responders.

A collection of YARA rules for research and hunting purposes.

A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel

A platform providing an activity feed on exploited vulnerabilities.

A threat intelligence dissemination layer for open-source security tools with STIX-2 support and plugin-based architecture.

Deception based detection techniques with MITRE ATT&CK mapping and Honey Resources.

Aggregates security threats from online sources and outputs to various formats.

A collection of tools and resources for threat hunters.