ioc[.]one - OSINT Cyber Threat Intelligence Database

Building an Integrated Threat Intelligence Platform Using Python and Kibana

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Impersonation - T1656 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 Search Engines - T1593.002 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	6272a70e-6ef0-44cc-adc3-0c5b0b871189
Fingerprint	a5800bb30912b781
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 16, 2024, 6:26 p.m.
Added to db	Nov. 16, 2024, 8:10 p.m.
Last updated	Nov. 17, 2024, 6:50 p.m.
Headline	Building an Integrated Threat Intelligence Platform Using Python and Kibana
Title	Building an Integrated Threat Intelligence Platform Using Python and Kibana
Detected Hints/Tags/Attributes	75/2/14

Source URLs

	Redirection	Url
Details	Redirection	https://infosecwriteups.com/building-an-integrated-threat-intelligence-platform-using-python-and-kibana-84503afe6251?source=rss----7b722bfd1b8d---4
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Fbuilding-an-integrated-threat-intelligence-platform-using-python-and-kibana-84503afe6251%3Fsource%3Drss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/building-an-integrated-threat-intelligence-platform-using-python-and-kibana-84503afe6251?gi=dee0c8d56095&source=rss----7b722bfd1b8d---4

URL Provider

Details	Provider	Source level domain
Details	infosecwriteups.com	infosecwriteups.com
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	136	✔	InfoSec Write-ups - Medium	https://infosecwriteups.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	81		haveibeenpwned.com
Details	Domain	28		subprocess.run
Details	Domain	831		example.com
Details	Domain	27		api.github.com
Details	Domain	1		3g2upl4pq6kufc4m.onion
Details	Domain	2		api.shodan.io
Details	File	72		response.json
Details	File	1		dnstwist_results.json
Details	Github username	4		search
Details	IPv4	1441		127.0.0.1
Details	Url	1		https://haveibeenpwned.com/api/v3/breachedaccount
Details	Url	1		https://api.github.com/search/code
Details	Url	1		http://3g2upl4pq6kufc4m.onion
Details	Url	1		https://api.shodan.io/shodan/host