Skip to content

mgetzem/Sooty

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

45 Commits
.idea
.idea
 
 
readmeimages
readmeimages
 
 
README.md
README.md
 
 
Sooty.py
Sooty.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Generic badge PRs Welcome GitHub contributors Generic badge HitCount

Sooty

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Sooty can Currently:

  • Sanitise URL's to be safe to send in emails
  • Perform reverse DNS and DNS lookups
  • Perform reputation checks from VirusTotal
  • Check if an IP address is a TOR exit node
  • Decode Proofpoint URL's and UTF-8 encoded URLS
  • Get file hashes and compare them against VirusTotal (see requirements)
  • Perform WhoIs Lookups

Requirements

  • Python 3.x
  • To use the Hash comparison with VirusTotal requires an API key, replace the key in the code with your own key.

Contributors:

  • Aaron J Copley for his code to decode ProofPoint URL's
  • James Duarte for adding a hash and auto-check option to the hashing function

About

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%