Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

F#

Rust

Go

Java

Julia

Erlang

Assembly

Elixir

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Elm

Ada

Racket

F#

Clojure

Dart

Zig

Lua

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇨🇦 Canada

🇮🇪 Ireland

🇹🇰 Tokelau

🇬🇺 Guam

🇭🇷 Croatia

🇮🇸 Iceland

🇧🇳 Brunei

🇩🇿 Algeria

All Countries Compare Countries

ninoseki/eml_analyzer

Stars
262
Rank 156,136 (Top 4 %)
Language
Python
License
MIT License
Created over 4 years ago
Updated 4 months ago

ninoseki/eml_analyzer

ninoseki

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

An application to analyze the EML file

EML analyzer

EML analyzer is an application to analyze the EML file which can:

Analyze headers.
Analyze bodies.
- Extract IOCs (URLs, domains, IP addresses, emails) in bodies.
Analyze attachments.
- Identify whether attachments contain suspicious OLE files.

Installation

Docker

git clone https://github.com/ninoseki/eml_analyzer.git
cd eml_analyzer
docker build . -t eml_analyzer
docker run -i -d -p 8000:8000 eml_analyzer

The application is running at: http://localhost:8000/ in your browser.

Docker Compose

git clone https://github.com/ninoseki/eml_analyzer.git
cd eml_analyzer
docker-compose up

Docker vs. Docker compose

Docker:
- Run Uvicorn and SpamAssassin in the same container. (The processes are managed by Circus)
Docker Compose:
- Run Gunicorn and SpamAssassin in each container.

Thus Docker Compose is suitable for the production use.

Heroku

Alternatively, you can deploy the application on Heroku.

ToDo

Support MSG format.
In-depth attachments analysis by using oletools.

mitaka

A browser extension for OSINT search

mihari

A tool for OSINT based threat hunting

shodan-dojo

Learning Shodan through katas

miteru

An experimental phishing kit detection tool

uzen

Website crawler with YARA detection

apullo

A scanner for taking basic fingerprints

ioc-extractor

An npm package for extracting common IoC (Indicator of Compromise)

shimon

Calculate fingerprints of a website for OSINT search

ukemi

A CLI tool for querying passive DNS services

pomodoro-daisuki

ayashige

Ayashige provides a list of suspicious newly updated domains as a JSON feed

iocingestor

An extendable tool to extract and aggregate IoCs from threat feeds

arq-dashboard

A dashboard for ARQ built with FastAPI

abuse_whois

Yet another way to find where to report an abuse

rogue_one

A rogue DNS detector

vscode-mogami

A VS Code extension for checking the latest version of each dependency

phishing_kits_2021

A dataset of phishing kits in the wild

vscode-pylens

A VS Code extension to show the latest version of a dependency in pyproject.toml or requirements.txt

misp-gateway

API gateway for MISP

osakana

A Swiss army knife tool for my phishing research

urlscan

urlscan.io API wrapper for Ruby

fanger

An npm package to defang and refang IoC

tansaku

Yet another dirbuster tool

kibune

A Sigma based detection pipeline

shodanx

Yet another Shodan API wrapper for Ruby

whois-parser

Yet another whois parser for Python

securitytrails

SecurityTrails API wrapper for Ruby

playwright-har-tracer

A Python implementation version of Playwright's HAR tracer

rangescan

A CLI tool to scan websites on a specific IP range and filter the results by a regexp

mihama

osv.dev API clone

panels

A collection of hashes of an HTTP response of a C2 / admin panel

SimpleWhatWeb

Simplified ver. of WhatWeb

virustotalx

Yet another VirusTotal API wrapper for Ruby

binaryedge-rb

BinaryEdge API wrapper for Ruby

niteru

Compare HTML similarity using structural and style metrics

vscode-gem-lens

A VS Code extension to show the latest version of each gem in a gemspec

ti-config

emailrep-analyzer

Cortex Analyzer for emailrep.io

doh_client

DNS over HTTPS (DoH) client for Ruby

ts-jest-chrome-extension-starter

A starter template to create a Chrome extension with TypeScript and Jest

ryo

Yet another website recon tool powered by Ruby

spysex

Spyse API wrapper for Ruby

whois-rest

A RESTful whois

zoomeye-rb

ZoomEye API wrapper for Ruby

digging

A Web API for DNS digging

ninoseki.github.io

pycomponents

An experimental tool to generate CycloneDX SBOM from running Python processes

awesome-csirt-jp

A curated list of tools and resources for CSIRT in Japan

jsac2023-sbom-workshop

JSAC2023 SBOM Workshop

browserless-chrome

yeti-securitytrails

YETI analytics plugins for SecurityTrails

funky_hao

A surface analysis tool for MoqHao

MISP-japanization

MISP Japananization / MISP日本語化プロジェクト

cortex-securitytrails

Cortex analyzer for SecurityTrails

sleep_warm

A web-based low-interaction honeypot build on Rack

ExUrlscan

urlscan.io API wrapper for Elixir

aiodnsbl

Async DNSBL lists checker

kokki

Convert a country name / code & IP address to an emoji flag

crtsh

crt.sh API wrapper for Ruby

misp-rb

MISP API wrapper for Ruby

roamingmantis

hash-hush

Smart links for hashes

ruby-the-noises

ザ・ノイジーズのポッドキャスト用Rubyクライアント。

highlightjs-yara

A highlight.js plugin for YARA

mihari-frontend

The frontend app for Mihari

kanshi

Certificate Transparency (CT) logs monitoring with a regex

urlhaus_monitor

A monitoring tool for URLhaus feeds

baramaki

itamae_thehive

Automated installation of TheHive/Cortex by using Itamae

misc

censysx

A Censys Search v2 API wrapper for Ruby

zip-image-similarity

rb-mynumber

Check given string/number is a MyNumber or not

azuma

Yet another Sigma library for Python

cortex_URLhaus_analyzer

Cortex analyzer for URLhaus

cortex_urlscan_analyzer

Cortex analyzer for urlscan.io.

iw2021_moqhao

A dataset behind my IW2021 talk

hachi

Hachi(蜂) is a dead simple TheHive API wrapper for Ruby.

todo-stimulus

TodoMVC with Stimulus + TypeScript

files-downloader

A web extension to download files via your active tab

rspec-httpbin

An httpbin like Rack app for RSpec

fakespy

onyphe-rb

ONYPHE API wrapper for Ruby

whistling

daino

daino(大脳) is a dead simple Cortex API wrapper for Ruby.

16shop

fushin

A malicious blog posts monitoring tool

dnpedia-rb

DNPedia domain search API wrapper for Ruby

mihari-action

ex_tansaku

Elixir version of ninoseki/tansaku

uv-dynamic-versioning

greynoise

GreyNoise API wrapper for Ruby

tweet_stream

itamae_gosint

Automated installation of GOSINT by using itamae

passive_circl

CIRCL Passive DNS/SSL API wrapper for Ruby

yara_rules

My hand-made YARA rules

ipinfo-analyzers

Cortex Analyzer for IPinfo

first-csirt-basic-course-md

Markdown version of the FIRST CSIRT Basic Course https://www.first.org/education/trainings

ahiru

Yet another Ruby gem for DuckDuckGo Search

miniset

A Jinja2 template processor for interacting with an SQL engine