This is going right into my toolbox. Love tools that quietly give you signal without forcing a whole workflow. The passive aspect is especially nice for recon work.
DavideNL · 4h ago
Note that a Virustotal API key is required... so it doesn't seem very privacy friendly.
thih9 · 3h ago
Off topic, in case this needs a backronym with no profanity, sharing some ideas; first one is my favorite:
- What's That Funny Internet Site?
- Web Threat Forensic Inspection Service
- Warden That Flags Internet Suspicion
xocnad · 23m ago
TIL a new word - backronym
Briannaj · 8h ago
I'm actually surprised no one built this before this is exactly what soc analyst would need.
1dom · 3h ago
This looks like a really cool little CLI script, and I could see myself using it as a regular CLI tool instead of whois and Googling. It looks really good, it gathers a lot of extra info, and uses a bunch of highly regarded external sources like virustotal, shodan, graynoise and more.
- What's That Funny Internet Site?
- Web Threat Forensic Inspection Service
- Warden That Flags Internet Suspicion
Only criticism is that it does use or need a bunch of accounts and API keys which probably makes the setup a bit tedious: https://github.com/pirxthepilot/wtfis?tab=readme-ov-file#dat... obviously a necessary evil though given what the tool is doing.