├── .gitignore ├── README.md ├── android ├── README.md ├── androguard_json.py ├── dexofuzzy2gephi.py ├── download_androguard_report.py ├── dump_android_backup.py ├── extract_firebase.py ├── extract_rsrc_strings.py ├── get_certificate.py ├── get_dex.py ├── get_method_code.py ├── get_package_name.py ├── is_obfuscated.py ├── koodous_search.py ├── koodous_tag.py ├── print_frosting.py └── yaradex.py ├── censys ├── censyscerts.py ├── censyscompare.py ├── censysdiff.py ├── censysip.py ├── censysipentries.py ├── censyslib.py └── censyssearch.py ├── certs ├── get_crtsh_subdomains.py └── listcerts.py ├── clamav_to_yara.py ├── cloudcidrs.py ├── cloudfare_certs.py ├── csv_extract.py ├── disassemble.py ├── doc ├── README.md └── check_docx.py ├── elf ├── miasm_sandbox.py └── unxor.py ├── email ├── README.md ├── parseeml.py ├── parseeml_old.py └── requirements.txt ├── forensic ├── README.md ├── extract_chrome_history.py ├── filetimeline.py ├── ios_unpack.py └── mactime.py ├── format ├── README.md ├── countbytes.py ├── csv2md.py ├── csvcut.py ├── extract_ttld.py ├── fixtar.py ├── ipconvert.py ├── iprange.py ├── parsetar.py ├── parsezip.py ├── punycode.py └── unxor.py ├── ghidra_scripts ├── README.md ├── yara-crypto.yar └── yaracrypto.py ├── goo.gl ├── README.md └── api.py ├── harpoon-extra └── domain_location.py ├── hostnametoips.py ├── infect.sh ├── iocs └── extract_hashes.py ├── macos ├── README.md ├── check_kext_kk.py ├── extract_kext_kk.py ├── macho_print.py ├── macho_print_lief.py ├── macho_rename_section.py └── symhash.py ├── miasm ├── simu_sc_linux.py ├── simu_sc_linux32.py └── simu_sc_linux64.py ├── misp ├── README.md ├── misp.py ├── misp2sig.py ├── mispcli.py ├── mispcopy.py ├── misplib.py ├── vtxcheck.py ├── xsearch_misp.py └── yaraxcheck.py ├── mqtt-get.py ├── network ├── README.md ├── check_ripe_last_route.py ├── check_umbrella.py ├── checkpoint_banner.py ├── cidr_range.py ├── cidr_reduce.py ├── dns_resolve.py ├── dns_resolve_mx.py ├── domains_timeline.py ├── extract_iocs.py ├── list_mullvad_ips.py └── test_website.py ├── ooni ├── README.md ├── download_measurements.py ├── get_ooni_signal_status.py ├── get_ooni_telegram.py └── get_ooni_website_status.py ├── osint ├── README.md ├── google_doc_info.py ├── protonkey.py ├── truecaller.py └── waybackimages.py ├── parsejpeg.py ├── parsepng.py ├── pe ├── README.md ├── build_shellcode_pe.py ├── build_shellcode_pe_elfesteem.py ├── checkpesize.py ├── common_strings.py ├── count_zero.py ├── disitool.py ├── extract_sections_python.py ├── extract_sig.py ├── get_imphash.py ├── get_richheaderhash.py ├── getnetguids.py ├── pe.py ├── pecheck.py ├── pescanner.py ├── pesearch.py ├── petimeline.py ├── print_signature.py ├── py2exe_unpack.py ├── pyinstxtractor.py ├── unxor.py └── update_ep.py ├── pt ├── README.md ├── domains_on_iplist.py ├── get_hashes.py ├── get_ip_domains.py ├── get_osint.py ├── get_project_iocs.py ├── get_quota.py └── get_subdomains.py ├── resources ├── README.md ├── drivers.csv └── processes.csv ├── scrdec18.c ├── shodan ├── README.md ├── extractips.py ├── rawshodan.py ├── shodan_cobaltstrike.py ├── shodan_ssh_history.py └── shodanhistory.py ├── shorturls ├── README.md ├── bitly.py └── urlteamdl.py ├── threats ├── README.md ├── cobaltstrike_config.py ├── cobaltstrike_decode.py ├── pithus_send.py ├── quad9.py └── urlscan.py ├── twilio └── read_sms.py ├── twitter ├── bird.py ├── graph-followers.py ├── twicli.py └── twitter-followers.py ├── unxor.py ├── visualization ├── README.md ├── heatmap.py ├── ip_map.py └── timeline_bar.py └── web ├── README.md ├── check_fastest_cache_version.py ├── check_fun_files.py ├── cmsdetect.py ├── fun_files.txt ├── headers.py ├── http_test.py ├── http_test_methods.py ├── httpscan ├── README.md ├── httpscan.py ├── requirements.txt └── signatures │ ├── example.sig │ └── gophish.sig ├── is_wp.py ├── phishingkits.txt ├── plot_response_time.sh ├── proxychecker.py ├── server_image_fingerprint.py ├── waf ├── sqli_keywords.txt ├── waf_bypass.py └── waf_test_keywords.py ├── watch_response_time.py └── webscan.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/.gitignore -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/README.md -------------------------------------------------------------------------------- /android/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/README.md -------------------------------------------------------------------------------- /android/androguard_json.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/androguard_json.py -------------------------------------------------------------------------------- /android/dexofuzzy2gephi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/dexofuzzy2gephi.py -------------------------------------------------------------------------------- /android/download_androguard_report.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/download_androguard_report.py -------------------------------------------------------------------------------- /android/dump_android_backup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/dump_android_backup.py -------------------------------------------------------------------------------- /android/extract_firebase.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/extract_firebase.py -------------------------------------------------------------------------------- /android/extract_rsrc_strings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/extract_rsrc_strings.py -------------------------------------------------------------------------------- /android/get_certificate.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/get_certificate.py -------------------------------------------------------------------------------- /android/get_dex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/get_dex.py -------------------------------------------------------------------------------- /android/get_method_code.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/get_method_code.py -------------------------------------------------------------------------------- /android/get_package_name.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/get_package_name.py -------------------------------------------------------------------------------- /android/is_obfuscated.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/is_obfuscated.py -------------------------------------------------------------------------------- /android/koodous_search.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/koodous_search.py -------------------------------------------------------------------------------- /android/koodous_tag.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/koodous_tag.py -------------------------------------------------------------------------------- /android/print_frosting.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/print_frosting.py -------------------------------------------------------------------------------- /android/yaradex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/android/yaradex.py -------------------------------------------------------------------------------- /censys/censyscerts.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censyscerts.py -------------------------------------------------------------------------------- /censys/censyscompare.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censyscompare.py -------------------------------------------------------------------------------- /censys/censysdiff.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censysdiff.py -------------------------------------------------------------------------------- /censys/censysip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censysip.py -------------------------------------------------------------------------------- /censys/censysipentries.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censysipentries.py -------------------------------------------------------------------------------- /censys/censyslib.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censyslib.py -------------------------------------------------------------------------------- /censys/censyssearch.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/censys/censyssearch.py -------------------------------------------------------------------------------- /certs/get_crtsh_subdomains.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/certs/get_crtsh_subdomains.py -------------------------------------------------------------------------------- /certs/listcerts.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/certs/listcerts.py -------------------------------------------------------------------------------- /clamav_to_yara.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/clamav_to_yara.py -------------------------------------------------------------------------------- /cloudcidrs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/cloudcidrs.py -------------------------------------------------------------------------------- /cloudfare_certs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/cloudfare_certs.py -------------------------------------------------------------------------------- /csv_extract.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/csv_extract.py -------------------------------------------------------------------------------- /disassemble.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/disassemble.py -------------------------------------------------------------------------------- /doc/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/doc/README.md -------------------------------------------------------------------------------- /doc/check_docx.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/doc/check_docx.py -------------------------------------------------------------------------------- /elf/miasm_sandbox.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/elf/miasm_sandbox.py -------------------------------------------------------------------------------- /elf/unxor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/elf/unxor.py -------------------------------------------------------------------------------- /email/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/email/README.md -------------------------------------------------------------------------------- /email/parseeml.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/email/parseeml.py -------------------------------------------------------------------------------- /email/parseeml_old.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/email/parseeml_old.py -------------------------------------------------------------------------------- /email/requirements.txt: -------------------------------------------------------------------------------- 1 | eml_parser[filemagic] 2 | -------------------------------------------------------------------------------- /forensic/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/forensic/README.md -------------------------------------------------------------------------------- /forensic/extract_chrome_history.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/forensic/extract_chrome_history.py -------------------------------------------------------------------------------- /forensic/filetimeline.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/forensic/filetimeline.py -------------------------------------------------------------------------------- /forensic/ios_unpack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/forensic/ios_unpack.py -------------------------------------------------------------------------------- /forensic/mactime.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/forensic/mactime.py -------------------------------------------------------------------------------- /format/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/README.md -------------------------------------------------------------------------------- /format/countbytes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/countbytes.py -------------------------------------------------------------------------------- /format/csv2md.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/csv2md.py -------------------------------------------------------------------------------- /format/csvcut.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/csvcut.py -------------------------------------------------------------------------------- /format/extract_ttld.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/extract_ttld.py -------------------------------------------------------------------------------- /format/fixtar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/fixtar.py -------------------------------------------------------------------------------- /format/ipconvert.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/ipconvert.py -------------------------------------------------------------------------------- /format/iprange.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/iprange.py -------------------------------------------------------------------------------- /format/parsetar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/parsetar.py -------------------------------------------------------------------------------- /format/parsezip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/parsezip.py -------------------------------------------------------------------------------- /format/punycode.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/punycode.py -------------------------------------------------------------------------------- /format/unxor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/format/unxor.py -------------------------------------------------------------------------------- /ghidra_scripts/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ghidra_scripts/README.md -------------------------------------------------------------------------------- /ghidra_scripts/yara-crypto.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ghidra_scripts/yara-crypto.yar -------------------------------------------------------------------------------- /ghidra_scripts/yaracrypto.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ghidra_scripts/yaracrypto.py -------------------------------------------------------------------------------- /goo.gl/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/goo.gl/README.md -------------------------------------------------------------------------------- /goo.gl/api.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/goo.gl/api.py -------------------------------------------------------------------------------- /harpoon-extra/domain_location.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/harpoon-extra/domain_location.py -------------------------------------------------------------------------------- /hostnametoips.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/hostnametoips.py -------------------------------------------------------------------------------- /infect.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/infect.sh -------------------------------------------------------------------------------- /iocs/extract_hashes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/iocs/extract_hashes.py -------------------------------------------------------------------------------- /macos/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/README.md -------------------------------------------------------------------------------- /macos/check_kext_kk.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/check_kext_kk.py -------------------------------------------------------------------------------- /macos/extract_kext_kk.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/extract_kext_kk.py -------------------------------------------------------------------------------- /macos/macho_print.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/macho_print.py -------------------------------------------------------------------------------- /macos/macho_print_lief.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/macho_print_lief.py -------------------------------------------------------------------------------- /macos/macho_rename_section.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/macho_rename_section.py -------------------------------------------------------------------------------- /macos/symhash.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/macos/symhash.py -------------------------------------------------------------------------------- /miasm/simu_sc_linux.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/miasm/simu_sc_linux.py -------------------------------------------------------------------------------- /miasm/simu_sc_linux32.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/miasm/simu_sc_linux32.py -------------------------------------------------------------------------------- /miasm/simu_sc_linux64.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/miasm/simu_sc_linux64.py -------------------------------------------------------------------------------- /misp/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/README.md -------------------------------------------------------------------------------- /misp/misp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/misp.py -------------------------------------------------------------------------------- /misp/misp2sig.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/misp2sig.py -------------------------------------------------------------------------------- /misp/mispcli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/mispcli.py -------------------------------------------------------------------------------- /misp/mispcopy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/mispcopy.py -------------------------------------------------------------------------------- /misp/misplib.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/misplib.py -------------------------------------------------------------------------------- /misp/vtxcheck.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/vtxcheck.py -------------------------------------------------------------------------------- /misp/xsearch_misp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/xsearch_misp.py -------------------------------------------------------------------------------- /misp/yaraxcheck.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/misp/yaraxcheck.py -------------------------------------------------------------------------------- /mqtt-get.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/mqtt-get.py -------------------------------------------------------------------------------- /network/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/README.md -------------------------------------------------------------------------------- /network/check_ripe_last_route.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/check_ripe_last_route.py -------------------------------------------------------------------------------- /network/check_umbrella.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/check_umbrella.py -------------------------------------------------------------------------------- /network/checkpoint_banner.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/checkpoint_banner.py -------------------------------------------------------------------------------- /network/cidr_range.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/cidr_range.py -------------------------------------------------------------------------------- /network/cidr_reduce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/cidr_reduce.py -------------------------------------------------------------------------------- /network/dns_resolve.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/dns_resolve.py -------------------------------------------------------------------------------- /network/dns_resolve_mx.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/dns_resolve_mx.py -------------------------------------------------------------------------------- /network/domains_timeline.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/domains_timeline.py -------------------------------------------------------------------------------- /network/extract_iocs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/extract_iocs.py -------------------------------------------------------------------------------- /network/list_mullvad_ips.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/list_mullvad_ips.py -------------------------------------------------------------------------------- /network/test_website.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/network/test_website.py -------------------------------------------------------------------------------- /ooni/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ooni/README.md -------------------------------------------------------------------------------- /ooni/download_measurements.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ooni/download_measurements.py -------------------------------------------------------------------------------- /ooni/get_ooni_signal_status.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ooni/get_ooni_signal_status.py -------------------------------------------------------------------------------- /ooni/get_ooni_telegram.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ooni/get_ooni_telegram.py -------------------------------------------------------------------------------- /ooni/get_ooni_website_status.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/ooni/get_ooni_website_status.py -------------------------------------------------------------------------------- /osint/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/osint/README.md -------------------------------------------------------------------------------- /osint/google_doc_info.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/osint/google_doc_info.py -------------------------------------------------------------------------------- /osint/protonkey.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/osint/protonkey.py -------------------------------------------------------------------------------- /osint/truecaller.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/osint/truecaller.py -------------------------------------------------------------------------------- /osint/waybackimages.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/osint/waybackimages.py -------------------------------------------------------------------------------- /parsejpeg.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/parsejpeg.py -------------------------------------------------------------------------------- /parsepng.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/parsepng.py -------------------------------------------------------------------------------- /pe/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/README.md -------------------------------------------------------------------------------- /pe/build_shellcode_pe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/build_shellcode_pe.py -------------------------------------------------------------------------------- /pe/build_shellcode_pe_elfesteem.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/build_shellcode_pe_elfesteem.py -------------------------------------------------------------------------------- /pe/checkpesize.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/checkpesize.py -------------------------------------------------------------------------------- /pe/common_strings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/common_strings.py -------------------------------------------------------------------------------- /pe/count_zero.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/count_zero.py -------------------------------------------------------------------------------- /pe/disitool.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/disitool.py -------------------------------------------------------------------------------- /pe/extract_sections_python.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/extract_sections_python.py -------------------------------------------------------------------------------- /pe/extract_sig.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/extract_sig.py -------------------------------------------------------------------------------- /pe/get_imphash.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/get_imphash.py -------------------------------------------------------------------------------- /pe/get_richheaderhash.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/get_richheaderhash.py -------------------------------------------------------------------------------- /pe/getnetguids.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/getnetguids.py -------------------------------------------------------------------------------- /pe/pe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/pe.py -------------------------------------------------------------------------------- /pe/pecheck.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/pecheck.py -------------------------------------------------------------------------------- /pe/pescanner.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/pescanner.py -------------------------------------------------------------------------------- /pe/pesearch.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/pesearch.py -------------------------------------------------------------------------------- /pe/petimeline.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/petimeline.py -------------------------------------------------------------------------------- /pe/print_signature.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/print_signature.py -------------------------------------------------------------------------------- /pe/py2exe_unpack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/py2exe_unpack.py -------------------------------------------------------------------------------- /pe/pyinstxtractor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/pyinstxtractor.py -------------------------------------------------------------------------------- /pe/unxor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/unxor.py -------------------------------------------------------------------------------- /pe/update_ep.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pe/update_ep.py -------------------------------------------------------------------------------- /pt/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/README.md -------------------------------------------------------------------------------- /pt/domains_on_iplist.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/domains_on_iplist.py -------------------------------------------------------------------------------- /pt/get_hashes.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_hashes.py -------------------------------------------------------------------------------- /pt/get_ip_domains.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_ip_domains.py -------------------------------------------------------------------------------- /pt/get_osint.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_osint.py -------------------------------------------------------------------------------- /pt/get_project_iocs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_project_iocs.py -------------------------------------------------------------------------------- /pt/get_quota.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_quota.py -------------------------------------------------------------------------------- /pt/get_subdomains.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/pt/get_subdomains.py -------------------------------------------------------------------------------- /resources/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/resources/README.md -------------------------------------------------------------------------------- /resources/drivers.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/resources/drivers.csv -------------------------------------------------------------------------------- /resources/processes.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/resources/processes.csv -------------------------------------------------------------------------------- /scrdec18.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/scrdec18.c -------------------------------------------------------------------------------- /shodan/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/README.md -------------------------------------------------------------------------------- /shodan/extractips.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/extractips.py -------------------------------------------------------------------------------- /shodan/rawshodan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/rawshodan.py -------------------------------------------------------------------------------- /shodan/shodan_cobaltstrike.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/shodan_cobaltstrike.py -------------------------------------------------------------------------------- /shodan/shodan_ssh_history.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/shodan_ssh_history.py -------------------------------------------------------------------------------- /shodan/shodanhistory.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shodan/shodanhistory.py -------------------------------------------------------------------------------- /shorturls/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shorturls/README.md -------------------------------------------------------------------------------- /shorturls/bitly.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shorturls/bitly.py -------------------------------------------------------------------------------- /shorturls/urlteamdl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/shorturls/urlteamdl.py -------------------------------------------------------------------------------- /threats/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/README.md -------------------------------------------------------------------------------- /threats/cobaltstrike_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/cobaltstrike_config.py -------------------------------------------------------------------------------- /threats/cobaltstrike_decode.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/cobaltstrike_decode.py -------------------------------------------------------------------------------- /threats/pithus_send.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/pithus_send.py -------------------------------------------------------------------------------- /threats/quad9.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/quad9.py -------------------------------------------------------------------------------- /threats/urlscan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/threats/urlscan.py -------------------------------------------------------------------------------- /twilio/read_sms.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/twilio/read_sms.py -------------------------------------------------------------------------------- /twitter/bird.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/twitter/bird.py -------------------------------------------------------------------------------- /twitter/graph-followers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/twitter/graph-followers.py -------------------------------------------------------------------------------- /twitter/twicli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/twitter/twicli.py -------------------------------------------------------------------------------- /twitter/twitter-followers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/twitter/twitter-followers.py -------------------------------------------------------------------------------- /unxor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/unxor.py -------------------------------------------------------------------------------- /visualization/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/visualization/README.md -------------------------------------------------------------------------------- /visualization/heatmap.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/visualization/heatmap.py -------------------------------------------------------------------------------- /visualization/ip_map.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/visualization/ip_map.py -------------------------------------------------------------------------------- /visualization/timeline_bar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/visualization/timeline_bar.py -------------------------------------------------------------------------------- /web/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/README.md -------------------------------------------------------------------------------- /web/check_fastest_cache_version.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/check_fastest_cache_version.py -------------------------------------------------------------------------------- /web/check_fun_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/check_fun_files.py -------------------------------------------------------------------------------- /web/cmsdetect.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/cmsdetect.py -------------------------------------------------------------------------------- /web/fun_files.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/fun_files.txt -------------------------------------------------------------------------------- /web/headers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/headers.py -------------------------------------------------------------------------------- /web/http_test.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/http_test.py -------------------------------------------------------------------------------- /web/http_test_methods.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/http_test_methods.py -------------------------------------------------------------------------------- /web/httpscan/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/httpscan/README.md -------------------------------------------------------------------------------- /web/httpscan/httpscan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/httpscan/httpscan.py -------------------------------------------------------------------------------- /web/httpscan/requirements.txt: -------------------------------------------------------------------------------- 1 | requests 2 | PyYAML 3 | cryptography 4 | beautifoulsoup4 5 | lxml 6 | -------------------------------------------------------------------------------- /web/httpscan/signatures/example.sig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/httpscan/signatures/example.sig -------------------------------------------------------------------------------- /web/httpscan/signatures/gophish.sig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/httpscan/signatures/gophish.sig -------------------------------------------------------------------------------- /web/is_wp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/is_wp.py -------------------------------------------------------------------------------- /web/phishingkits.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/phishingkits.txt -------------------------------------------------------------------------------- /web/plot_response_time.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/plot_response_time.sh -------------------------------------------------------------------------------- /web/proxychecker.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/proxychecker.py -------------------------------------------------------------------------------- /web/server_image_fingerprint.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/server_image_fingerprint.py -------------------------------------------------------------------------------- /web/waf/sqli_keywords.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/waf/sqli_keywords.txt -------------------------------------------------------------------------------- /web/waf/waf_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/waf/waf_bypass.py -------------------------------------------------------------------------------- /web/waf/waf_test_keywords.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/waf/waf_test_keywords.py -------------------------------------------------------------------------------- /web/watch_response_time.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/watch_response_time.py -------------------------------------------------------------------------------- /web/webscan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Te-k/analyst-scripts/HEAD/web/webscan.py --------------------------------------------------------------------------------