Small collection of tools to help speed up malware and CTI analysis.
This Python script fetches a list of malicious IP addresses from Abuse CH's IP blocklist and dynamically adds them to the Windows firewall rules, blocking both outgoing and incoming connections to those IPs.
Open-source CTI feed aggregator — 45K+ IOCs from 6 free feeds, zero dependencies, no API keys. Built by the AIguard team (aiguardai.com)
Cyber threat intelligence pipeline: abuse.ch feeds → Bruin → BigQuery → Streamlit dashboard. How fast do malicious URLs get taken down, and what malware is behind them?
Complete toolkit for abuse.ch APIs — URLhaus, MalwareBazaar, ThreatFox, Feodo Tracker
🛠️ Extract and analyze network-based IOCs from malware samples in various archive formats with GoVettersTools for enhanced security research.
Add a description, image, and links to the abuse-ch topic page so that developers can more easily learn about it.
To associate your repository with the abuse-ch topic, visit your repo's landing page and select "manage topics."