Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ninoseki/mihari

A query aggregator for OSINT based threat hunting
https://github.com/ninoseki/mihari

osint threat-hunting threat-intelligence

Last synced: about 17 hours ago
JSON representation

A query aggregator for OSINT based threat hunting

Host: GitHub
URL: https://github.com/ninoseki/mihari
Owner: ninoseki
License: mit
Created: 2019-04-15T12:10:38.000Z (over 5 years ago)
Default Branch: master
Last Pushed: 2024-10-18T22:08:00.000Z (about 2 months ago)
Last Synced: 2024-10-29T15:12:43.473Z (about 1 month ago)
Topics: osint, threat-hunting, threat-intelligence
Language: Ruby
Homepage: https://ninoseki.github.io/mihari/
Size: 43.1 MB
Stars: 861
Watchers: 22
Forks: 102
Open Issues: 3
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

awesome-starz - ninoseki/mihari - A query aggregator for OSINT based threat hunting (Ruby)
awesome-hacking-lists - ninoseki/mihari - A query aggregator for OSINT based threat hunting (Ruby)

README

        # mihari

[![Gem Version](https://badge.fury.io/rb/mihari.svg)](https://badge.fury.io/rb/mihari)

[![Ruby CI](https://github.com/ninoseki/mihari/actions/workflows/ruby.yml/badge.svg)](https://github.com/ninoseki/mihari/actions/workflows/ruby.yml)

[![Node.js CI](https://github.com/ninoseki/mihari/actions/workflows/node.yml/badge.svg)](https://github.com/ninoseki/mihari/actions/workflows/node.yml)

[![Coverage Status](https://coveralls.io/repos/github/ninoseki/mihari/badge.svg?branch=master)](https://coveralls.io/github/ninoseki/mihari?branch=master)

[![CodeFactor](https://www.codefactor.io/repository/github/ninoseki/mihari/badge)](https://www.codefactor.io/repository/github/ninoseki/mihari)

A query aggregator for OSINT based threat hunting.

Mihari can aggregate multiple searches across multiple services in a single rule & persist findings in a database.

Mihari supports the following services by default.

- [BinaryEdge](https://www.binaryedge.io/)

- [Censys](http://censys.io)

- [CIRCL passive DNS](https://www.circl.lu/services/passive-dns/) / [passive SSL](https://www.circl.lu/services/passive-ssl/)

- [crt.sh](https://crt.sh/)

- [dnstwister](https://dnstwister.report/)

- [Fofa](https://en.fofa.info/)

- [GreyNoise](https://www.greynoise.io/)

- [HunterHow](https://hunter.how/)

- [Onyphe](https://onyphe.io)

- [OTX](https://otx.alienvault.com/)

- [PassiveTotal](https://community.riskiq.com/)

- [Pulsedive](https://pulsedive.com/)

- [SecurityTrails](https://securitytrails.com/)

- [Shodan](https://shodan.io)

- [urlscan.io](https://urlscan.io)

- [Validin](https://validin.com)

- [VirusTotal](http://virustotal.com) & [VirusTotal Intelligence](https://www.virustotal.com/gui/intelligence-overview)

- [ZoomEye](https://zoomeye.org)

See [documentation](https://ninoseki.github.io/mihari/) for more details.

You can also refer to [JSAC2024 workshop materials](https://ninoseki.github.io/jsac_mihari_workshop/) to learn how Mihari works through some exercises.

## License

The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).