Threat Intelligence Aggregator
A lightweight platform that pulls threat-intel feeds (MITRE, AlienVault OTX, AbuseIPDB) and normalizes indicators into a unified dashboard. Includes automated enrichment, tagging, and export to SIEM/SOAR.
Network Attack Surface Mapper
A tool that scans internal/external networks, correlates open services with known CVEs, and produces prioritized remediation reports. Designed for lab environments and security assessments.
ML-Based Phishing Email Classifier
A machine-learning pipeline that detects phishing patterns using NLP (transformers), URL analysis, and sender-reputation scoring. Includes a real-time demo interface and evaluation metrics.
Secure File Integrity Monitor
A cross-platform agent that hashes critical system files, monitors for unauthorized modifications, and alerts via webhook or syslog. Designed for small-scale SOC labs.
Automated Web App Pentest Toolkit
A modular toolkit combining passive recon, subdomain enumeration, endpoint discovery, and automated fuzzing. Useful for training or streamlining early pentesting phases.