Skip to content

VECERTUSA/Analyzer_forums

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

4 Commits
README.md
README.md
Β 
Β 
requirements.txt
requirements.txt
Β 
Β 
vecert_forums.py
vecert_forums.py
Β 
Β 

Repository files navigation

Analyzer_forums

VECERT Threat Intelligence CLI is a Python-based command-line tool for cyber threat intelligence analysts to query, visualize, and export data from the VECERT Analyzer API.

VECERT1

This API aggregates and structures posts scraped from underground forums, leak sites, and dark web communities β€” providing insights into threat actor activity, data breaches, and emerging attack vectors.

Menu:

  1. Search by Title
  2. Search by Author
  3. Search by Posted Date
  4. Advanced search (combine filters)
  5. Change per_page (max 100)
  6. Next page
  7. Previous page
  8. Show Overview
  9. Show Current Query
  10. Export Results to CSV
  11. Exit

πŸ“Š Overview Dashboard

On startup, it automatically fetches and displays:

Total posts indexed

VECERT

Distribution by source (e.g. BreachForums, XSS, Cracked, etc.)

Top 10 authors / bots Example:

Mode: overview Total records: 403,927

Distribution by Source β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”¬β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”¬β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β” β”‚ Source β”‚ Count β”‚ Percentage β”‚ β”‚ BreachForumsβ”‚ 34,650 β”‚ 8.58% β”‚ β”‚ Cracked β”‚ 263,016 β”‚ 65.11% β”‚ β”‚ XForums β”‚ 57,041 β”‚ 14.12% β”‚ β””β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”΄β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”΄β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”˜

πŸ’Ύ CSV Export

Export your findings for reporting or correlation in other tools (e.g. MISP, Maltego, Excel).

Option 10 β†’ Export results to CSV

Choose to export:

🟒 Current page

πŸ”΅ All pages (auto-pagination)

2️⃣ Requirements

No external dependencies β€” only Python β‰₯ 3.7 is required.

βœ… Everything runs with built-in libraries:

urllib.request json csv re datetime

🧩 API Reference

Parameter Description Example

title Search keyword in post titles title=bank author Filter by threat actor or bot name author=intelbroker posted_date Date or partial (YYYY-MM-DD or YYYY-MM) posted_date=2025-10 page Pagination (default 1) page=2 per_page Results per page (max 100) per_page=50

🧠 Use Cases for Threat Intelligence

Threat Actor Tracking

Monitor posts by key personas (e.g., intelbroker, pompompurin, etc.)

Breach Monitoring

Identify leaks and databases being traded or sold.

TTPs and Emerging Threats

Search titles for keywords like β€œransomware”, β€œzero-day”, β€œphishing kit”.

Forum Intelligence Aggregation

Understand where conversations cluster (via distribution_by_source).

Data Correlation

Export to CSV for integration with:

MISP Splunk / ELK Excel / Power BI Maltego

πŸ’¬ Contact

Created by VECERT Threat Intelligence 🌐 vecert.io

πŸ“§ info@vecert.io

About

consumes the largest collection of forum content specialized in threat intelligence researchers.

Resources

Readme
Activity

Stars

6 stars

Watchers

0 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages