Malspider – Web Spidering Framework to Detect Web Compromises

0
0

Malspider is a web spidering framework that inspects websites for characteristics of compromise. It has three purposes:

  • Website Integrity Monitoring: monitor your organization’s website (or your personal website) for potentially malicious changes.
  • Generate Threat Intelligence: keep an eye on previously compromised sites, currently compromised sites, or sites that may be targeted by various threat actors.
  • Validate Web Compromises: Is this website still compromised?

Malspider has built-in detection for characteristics of compromise like hidden iframes, reconnaisance frameworks, vbscript injection, email address disclosure, etc. As we find stuff we will continue to add classifications to this tool and we hope you will do the same. Malspider will be a much better tool if CIRT teams and security practioners around the world contribute to the project.

Malspider - Web Spidering Framework to Detect Web Compromises

Malspider – Web Spidering Framework to Detect Web Compromises

Interaction with Malspider happens via an easy-to-use dashboard accessible through your web browser. The dashboard enables you to view alerts, inspect injected code, add websites to monitor, and tune false positives.

The tool support adding website for crawling over UI and also using a CSV file for large number of website. Crawling all selected websites will happen once every 24 hours.
You can read more and download the tool over here: https://github.com/ciscocsirt/

Share