From 3784f180e0618fca23fcf5a16c1f2e06f2d6e091 Mon Sep 17 00:00:00 2001 From: Joost Agterhoek Date: Sun, 29 Sep 2024 21:38:44 +0200 Subject: [PATCH] first version of filled out project pages --- content/projects/cli-host-lookup.md | 24 ++++++++++++++++++++++++ content/projects/flask-soc-site.md | 25 +++++++++++++++++++++++++ content/projects/gui-host-lookup.md | 20 ++++++++++++++++++++ 3 files changed, 69 insertions(+) create mode 100644 content/projects/cli-host-lookup.md create mode 100644 content/projects/flask-soc-site.md create mode 100644 content/projects/gui-host-lookup.md diff --git a/content/projects/cli-host-lookup.md b/content/projects/cli-host-lookup.md new file mode 100644 index 0000000..0b1f060 --- /dev/null +++ b/content/projects/cli-host-lookup.md @@ -0,0 +1,24 @@ ++++ +title = "CLI host lookup" +description = "A command-line interface tool to look up security information about hosts (IP address, URL, domain and email address). Built also as a web app and GUI application." +weight = 1 +updated = 2024-09-02 +[extra] +# You can also crop the image in the url by adjusting w=/h= +remote_image = "https://code.joostagterhoek.nl/joost/cli-lookup/media/branch/main/assets/imgs/README_2024-09-02_14-40-00.png" ++++ + +This is a 🐍 Python project to build a command-line interface application that aims to help a security operations center (SOC) analyst. You are able to enter a host (URL, IP address, email address) and look up security-relevant information. This includes: + + - 📧 DMARC and SPF information on domain names (also from URLs and email addresses). + - ✍️ Generic domain registration information. + +This is done with (among others) the following Python-modules: + +| module | purpose | usage | +|--------------|--------------------------------------------------------|----------------------------------------| +| `rich` | library for writing rich text to the terminal | display and color lookup results | +| `tqdm` | wraps any iterable and displays a smart progress bar | display progress for multiple lookups | +| `requests` | HTTP library | query VirusTotal- and AbuseIPDB-APIs | +| `checkdmarc` | Python module for validating SPF and DMARC DNS records | look up SPF and DMARC records | + diff --git a/content/projects/flask-soc-site.md b/content/projects/flask-soc-site.md new file mode 100644 index 0000000..42d7df7 --- /dev/null +++ b/content/projects/flask-soc-site.md @@ -0,0 +1,25 @@ ++++ +title = "Flask SOC site" +description = "A Python-powered Flask website to look up security information about domains, URLs and IP addresses. Built also as a CLI tool and a GUI application." +weight = 1 +updated = 2024-09-12 +[extra] +remote_image = "https://code.joostagterhoek.nl/joost/flask-soc-site/media/branch/main/screenshots/screenshot-flask-soc-site-2024-09-06.jpg" +# link_to = "https://code.joostagterhoek.nl/joost/flask-soc-site" ++++ + +This is a 🐍 Python project to build a one-page website that aims to help a security operations center (SOC) analyst. You will be able to enter a host (URL, IP address, email address) and look up security-relevant information. This includes: + + - 🪳 [VirusTotal](https://virustotal.com) and [AbuseIPDB](https://abuseipdb.com) results on a URL, domain name or IP (v4 and v6) address (🔴 color-coded undetected, harmless and malicious results) + - 📧 DMARC and SPF information on domain names (also from URLs and email addresses). + - ✍️ Generic domain registration information. + +This is done with (among others) the following Python-modules: + +| module | purpose | usage | +|--------------|--------------------------------------------------------|----------------------------------------| +| `flask` | lightweight WSGI web application framework | development server | +| `Datatables` | JavaScript HTML table enhancing library | organizing and coloring lookup results | +| `requests` | HTTP library | query VirusTotal- and AbuseIPDB-APIs | +| `checkdmarc` | Python module for validating SPF and DMARC DNS records | look up SPF and DMARC records | + diff --git a/content/projects/gui-host-lookup.md b/content/projects/gui-host-lookup.md new file mode 100644 index 0000000..3c61833 --- /dev/null +++ b/content/projects/gui-host-lookup.md @@ -0,0 +1,20 @@ ++++ +title = "GUI host lookup" +description = "A basic GUI-application to look up security information about hosts (IP address, domain name, URL). Built also as a web app and CLI tool." +weight = 1 +updated = 2024-08-23 +[extra] +remote_image = "https://code.joostagterhoek.nl/joost/gui-host-lookup/media/branch/main/screenshot.png" ++++ + +This is a 🐍 Python project to build a GUI application that aims to help a security operations center (SOC) analyst. You are able to enter a host (URL, IP address, email address) and look up security-relevant information. This includes: + + - 📧 DMARC and SPF information on domain names (also from URLs and email addresses). + - ✍️ Generic domain registration information. + +This is done with (among others) the following Python-modules: + +| module | purpose | usage | +|--------------|--------------------------------------------------------|----------------------------------------| +| `tkinter` | creating and managing Tk and Ttk widgets | display graphical user interface | +| `checkdmarc` | Python module for validating SPF and DMARC DNS records | look up SPF and DMARC records |