<![CDATA[ThreatIntelChecker: a cross-platform Python and PowerShell tool that checks IPs, domains, URLs, and SHA256 hashes across VirusTotal, AbuseIPDB, Shodan InternetDB, GreyNoise, CIRCL hashlookup, URLScan, and OS-level DNS and WHOIS enrichment.]]>

<![CDATA[ThreatIntelChecker: a cross-platform Python and PowerShell tool that checks IPs, domains, URLs, and SHA256 hashes across VirusTotal, AbuseIPDB, Shodan InternetDB, GreyNoise, CIRCL hashlookup, URLScan, and OS-level DNS and WHOIS enrichment.]]>ThreatIntelChecker: a cross-platform Python and PowerShell tool that checks IPs, domains, URLs, and SHA256 hashes across VirusTotal, AbuseIPDB, Shodan InternetDB, GreyNoise, CIRCL hashlookup, URLScan, and OS-level DNS and WHOIS enrichment.

The output is Splunk-compatible key=value pairs, one event per line, piped directly to stdout. Designed for SOC triage, IR enrichment, and SOAR playbook integration. No paid APIs required.

GitHub - eddietorial/ThreatIntelChecker

Contribute to eddietorial/ThreatIntelChecker development by creating an account on GitHub.

GitHub (github.com)

#SOC #ThreatIntelligence #BlueTeam #SIEM #Splunk #Python #PowerShell #CyberSecurity

]]>https://board.circlewithadot.net/topic/0d1adb57-2c37-48bb-ba86-f82801b44811/threatintelchecker-a-cross-platform-python-and-powershell-tool-that-checks-ips-domains-urls-and-sha256-hashes-across-virustotal-abuseipdb-shodan-internetdb-greynoise-circl-hashlookup-urlscan-and-os-level-dns-and-whois-enrichment.RSS for NodeFri, 15 May 2026 00:38:11 GMTTue, 21 Apr 2026 16:52:16 GMT60