{"id":29191227,"url":"https://github.com/threadlinee/ip-threat-analyzer","last_synced_at":"2026-03-06T08:03:14.201Z","repository":{"id":291281236,"uuid":"977165139","full_name":"Threadlinee/ip-threat-analyzer","owner":"Threadlinee","description":"Ultimate IP Threat Analyzer - Enterprise Threat Intelligence Platform","archived":false,"fork":false,"pushed_at":"2025-07-01T08:46:00.000Z","size":412,"stargazers_count":4,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-07-01T09:36:12.948Z","etag":null,"topics":["educational-purposes","github","hacking-tool","hacking-tools","internet-protocol","ip","ipaddress","ipaddress-tracker","lua","networking","python","scanning"],"latest_commit_sha":null,"homepage":"https://docs.github","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Threadlinee.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-05-03T15:15:48.000Z","updated_at":"2025-07-01T09:14:16.000Z","dependencies_parsed_at":"2025-06-21T05:33:26.788Z","dependency_job_id":"8f0fd1dd-8dab-4e40-8e8b-4493f32b8de2","html_url":"https://github.com/Threadlinee/ip-threat-analyzer","commit_stats":null,"previous_names":["threadlinee/ipg-ts"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/Threadlinee/ip-threat-analyzer","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Threadlinee%2Fip-threat-analyzer","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Threadlinee%2Fip-threat-analyzer/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Threadlinee%2Fip-threat-analyzer/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Threadlinee%2Fip-threat-analyzer/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Threadlinee","download_url":"https://codeload.github.com/Threadlinee/ip-threat-analyzer/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Threadlinee%2Fip-threat-analyzer/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":263055763,"owners_count":23406755,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["educational-purposes","github","hacking-tool","hacking-tools","internet-protocol","ip","ipaddress","ipaddress-tracker","lua","networking","python","scanning"],"created_at":"2025-07-02T00:30:41.255Z","updated_at":"2026-03-06T08:03:14.191Z","avatar_url":"https://github.com/Threadlinee.png","language":"C#","funding_links":["https://ko-fi.com/G2G114SBVV"],"categories":[],"sub_categories":[],"readme":"# ⚡ Ultimate IP Threat Analyzer  - Enterprise Threat Intelligence Platform\n\n![Static Badges](https://img.shields.io/badge/SOC2%20Compliant-Yes-green)\n![Static Badges](https://img.shields.io/badge/Python%20API-Beta-blueviolet)\n![Static Badges](https://img.shields.io/badge/Threat%20Feeds-14%20Sources-critical)\n![Static Badges](https://img.shields.io/badge/MITRE%20ATT%26CK-Mapped-ff69b4)\n\n\n# HOW TO RUN!!\n\n**git clone https://github.com/Threadlinee/IP-Threat-Analyzer**\n\nor install it **manually** , after that go in main directory go in **terminal** type: **dotnet build** , after it compiles \nrun **dotnet run**\n\n```diff\n+ Enterprise-ready network threat analysis solution\n+ Automated IOC correlation engine\n+ Real-time attack surface monitoring\n\n# 📊 Feature Matrix\n\n| Component            | Capabilities                          | Enterprise ROI       |\n|----------------------|---------------------------------------|----------------------|\n| **Threat Intel**     | 14 integrated feeds                   | 83% faster detection |\n| **Network Forensics**| Full packet reconstruction            | 98% traffic analysis |\n| **Automation**       | Playbooks with 200+ actions           | 60% faster response  |\n\n# � Architecture Overview\n███████████████████████████████████████████████████\n              SYSTEM ARCHITECTURE              \n═══════════════════════════════════════════════════\n┌─────────────┐  ┌─────────────┐  ┌─────────────┐\n│  COLLECTION │  │ CORRELATION │  │  RESPONSE   │\n│  LAYER      │  │ ENGINE      │  │  AUTOMATION │\n└──────┬──────┘  └──────┬──────┘  └──────┬──────┘\n       │                │                │       \n┌──────▼───────┐ ┌──────▼──────┐   ┌──────▼──────┐\n│ Threat Feeds │ │ AI Analysis │   │ Blocklists  │\n│ Packet Captur│ │ TTP Mapping │   │ SIEM Sync   │\n│ Log Ingestion│ │Risk Scoring │   │ Webhook Trig│\n└──────────────┘ └─────────────┘   └─────────────┘\n# 🚀 Deployment\n🐋 Containerized Deployment\n# Pull latest enterprise image\ndocker pull registry.threatanalyzer.com/ipaas/core:v5.0\n\n# Run with environment config\ndocker run -d \\\n  -e \"API_KEY=$SECRET_KEY\" \\\n  -p 8443:8443 \\\n  -v ./config:/app/config \\\n  ipaas-core\n# 🏢 Enterprise Cluster\n\n┌──────────────────────────────────────────────────┐\n│                 LOAD BALANCER                    │\n└───────────────┬────────────────┬─────────────────┘\n                │                │                  \n       ┌────────▼───────┐ ┌─────▼─────────┐        \n       │  Analyzer Node │ │ Analyzer Node │       \n       │   (16 vCPU)    │ │   (16 vCPU)   │       \n       └───────┬───────┬┘ └┬───────┬──────┘        \n               │       │   │       │               \n       ┌───────▼───────▼┐ ┌▼───────▼───────┐      \n       │  Redis Cluster │ │ Elasticsearch  │      \n       │    (HA)        │ │    (8 nodes)   │      \n       └────────────────┘ └────────────────┘      \n🔍 Core Modules\n1. Threat Intelligence Gateway\n\n# STIX/TAXII 2.1 compliant\n! 100,000+ pre-loaded IOCs\n+ Custom feed JSON API\n2. Network Analysis Engine\nProtocol Support Matrix:\n┌───────────────┬───────────────┬──────────────────┐\n│    Protocol   │Deep Inspection│  Vulnerability   │\n├───────────────┼───────────────┼──────────────────┤\n│ HTTP/HTTPS    │ Yes           │ OWASP Top 10     │\n│ SSH           │ Yes           │ CVE-2019-6111    │\n│ SMB           │ Yes           │ EternalBlue      │\n│ DNS           │ Partial       │ NXDOMAIN Attack  │\n└───────────────┴───────────────┴──────────────────┘\n\nTimeline Analysis:\n├─ 08:23:45 : Initial compromise\n├─ 08:42:12 : Lateral movement detected\n└─ 09:15:33 : Data exfiltration attempt\n\nContainment Actions:\n✓ Network isolation completed (Policy NET-ISO-45)\n✓ Credential rotation (3 service accounts)\n✓ Malware signature deployed to all endpoints\n# ⚙️ Technical Specifications\nAPI Reference\nENDPOINT                     | AUTH    | RATE LIMIT\n-----------------------------|---------|-----------\nGET /v1/threat/{ip}          | JWT     | 1000/min\nPOST /v1/scans               | API Key | 500/min \nGET /v1/reports/{id}/pdf     | JWT     | No limit\n\n# Contact:\n• GiThub: Threadlinee\n```\n## ☕ Support If you find this tool useful, drop a ⭐ or fork it.\n[![Buy Me a Coffee](https://ko-fi.com/img/githubbutton_sm.svg)](https://ko-fi.com/G2G114SBVV)\n\n## Stay safe and ethical\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fthreadlinee%2Fip-threat-analyzer","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fthreadlinee%2Fip-threat-analyzer","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fthreadlinee%2Fip-threat-analyzer/lists"}