passive-intel/index.html at main · noisyloop/passive-intel · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="utf-8" />
  <meta name="viewport" content="width=device-width, initial-scale=1" />
  <meta name="robots" content="index, follow" />
  <meta name="description" content="Passive threat-intel console for defenders and researchers. Read-only lookups against public, no-auth feeds. No scanning." />
  <title>passive intel console</title>
  <link rel="stylesheet" href="/style.css" />
</head>
<body>
  <main class="wrap">
    <header class="masthead">
      <h1>passive intel console</h1>
      <p class="tagline">read-only threat intelligence from public feeds &mdash; for defenders &amp; researchers</p>
      <p class="ethics" role="note">
        Passive only. This tool reads cached public intelligence; it never scans,
        probes, or contacts a target. Built for defenders, responders, and
        researchers. If you are looking for offensive tooling, this is not it.
      </p>
    </header>

    <section class="grid">
      <div class="panel" aria-labelledby="feeds-head">
        <h2 id="feeds-head" class="panel-head">abuse.ch live feeds &middot; active threats</h2>

        <h3 class="sub">&mdash;&mdash; urlhaus &middot; live malware urls &mdash;&mdash;</h3>
        <div class="row">
          <span class="ps">filter&gt;</span>
          <input id="u-filter" class="cli" type="text"
                 placeholder="host / threat / tag" spellcheck="false"
                 autocomplete="off" aria-label="filter urlhaus" maxlength="64" />
        </div>
        <div id="urlhaus-status" class="note"></div>
        <div id="urlhaus-list" class="feed-list"></div>

        <h3 class="sub">&mdash;&mdash; feodo &middot; botnet c2 &mdash;&mdash;</h3>
        <div id="feodo-status" class="note"></div>
        <div id="feodo-list" class="feed-list"></div>
      </div>

      <div class="panel" aria-labelledby="kev-head">
        <h2 id="kev-head" class="panel-head">cisa kev &middot; actively exploited</h2>
        <div class="row">
          <span class="ps">filter&gt;</span>
          <input id="k-filter" class="cli" type="text"
                 placeholder="vendor / product / cve" spellcheck="false"
                 autocomplete="off" aria-label="filter kev" maxlength="64" />
        </div>
        <div id="kev-status" class="note"></div>
        <div id="kev-list" class="kev-list"></div>
      </div>
    </section>

    <footer class="foot">
      <span>sources: cisa kev &middot; urlhaus &middot; feodo tracker &middot; nvd</span>
      <span>all public, no auth &middot; <a href="https://github.com/noisyloop" rel="noopener">source</a></span>
    </footer>
  </main>
  <script src="/app.js"></script>
</body>
</html>