{"id":40864087,"url":"https://github.com/n0xa/golang-stuff","last_synced_at":"2026-01-22T00:14:01.542Z","repository":{"id":177047415,"uuid":"583542191","full_name":"n0xa/golang-stuff","owner":"n0xa","description":"A collection of Go tools I make while I learn a little about GoLang.","archived":false,"fork":false,"pushed_at":"2025-04-12T01:07:41.000Z","size":46,"stargazers_count":9,"open_issues_count":0,"forks_count":1,"subscribers_count":4,"default_branch":"main","last_synced_at":"2025-04-12T02:25:53.308Z","etag":null,"topics":["blueteam","cybersecurity","go","golang","threatintelligence"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-2-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/n0xa.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-12-30T04:58:09.000Z","updated_at":"2025-04-12T01:07:44.000Z","dependencies_parsed_at":"2023-07-10T03:00:45.929Z","dependency_job_id":null,"html_url":"https://github.com/n0xa/golang-stuff","commit_stats":null,"previous_names":["n0xa/golang-stuff"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/n0xa/golang-stuff","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/n0xa%2Fgolang-stuff","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/n0xa%2Fgolang-stuff/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/n0xa%2Fgolang-stuff/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/n0xa%2Fgolang-stuff/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/n0xa","download_url":"https://codeload.github.com/n0xa/golang-stuff/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/n0xa%2Fgolang-stuff/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28647812,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-21T21:29:11.980Z","status":"ssl_error","status_checked_at":"2026-01-21T21:24:31.872Z","response_time":86,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["blueteam","cybersecurity","go","golang","threatintelligence"],"created_at":"2026-01-22T00:14:00.885Z","updated_at":"2026-01-22T00:14:01.538Z","avatar_url":"https://github.com/n0xa.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# GoLang-stuff\nA collection of Go tools I make while I learn a little about GoLang.  \nMostly Work-In-Progress and tinkering with blue-team, threat intelligence things  \n\nbgpview.io Tools\n----------------\n* ipasn.go lists BGP Autonomous System Numbers and info about an IP address\n* asn.go lists IPv4 and IPv6 Prefixes (subnets) advertised as part of a given ASN\n\nHPFeeds Tools\n-------------\n* hpfeeds-client.go is a reworked version of a broken, un-maintained HPFeeds implementation in go. I needed an easy way to just get the JSON Payload out of my Honeypot network. You can watch my MHN instance with it like this:\n```\ngo run hpfeeds-client.go seckc-community fk6QgrnyvwbWSxCIwL5SIc2oARC4DXx46 mhn.h-i-r.net 10000 cowrie.sessions\n```\nor compile it first:\n```\ngo build hpfeeds-client.go\n./hpfeeds-client seckc-community fk6QgrnyvwbWSxCIwL5SIc2oARC4DXx46 mhn.h-i-r.net 10000 cowrie.sessions amun.events conpot.events\n```\nYou can also pass the output directly to formatting and query tools like `jq` or save the json for use later.  `jq '.peerIP,.urls'` for example, will list the attacking IP addresses and any payload URLs that the honeypot reported to HPFeeds\n\nVirusTotal Tools\n----------------\nBefore using these tools, you must register with VirusTotal, acquire an API key and export it in the VTAPI environment variable, such as in your .bashrc or .zshrc file.   \n`export VTAPI=dab2_THIS_IS_AN_EXAMPLE_API_KEY_-_CHANGEME_e8e0496bcfce5e91f0000`  \nSome of these tools will iterate through a configurable number of pages of passive data (10 by default) which can use a lot of your daily API request allocation, so tune the \"maxpages\" variable to suit your situation if you find the number of queries it makes to be too much.\n* vthash.go is a command-line tool to gather the list of detections from VirusTotal for a given file or file hash. This allows security analysts to quickly size up an unknown file they have run across to see if it's been detected previously without firing up a web browser or uploading it.\n* vtdomain.go fetches information about a domain name from VirusTotal v3 `domains` API.\n* vtip.go queries IP address reputation and hostnames through VirusTotal's v3 `ip_addresses` API. \n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fn0xa%2Fgolang-stuff","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fn0xa%2Fgolang-stuff","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fn0xa%2Fgolang-stuff/lists"}