SpyGlass is a modular CLI tool providing comprehensive threat intelligence by querying a vast database of malicious IPs and domains through a powerful API.
SpyGlass, the all in one tool for a kickass api.
Security analysts and threat hunters use SpyGlass to quickly gather detailed intelligence on suspicious IP addresses and domains from a large, continuously updated database. It streamlines OSINT investigations and network monitoring by providing historical and real-time data on malicious actors, aiding in proactive threat detection and response.
This tool requires a purchased API key for access and is intended for educational and legitimate use only. Users should ensure compliance with local laws and avoid misuse of the threat intelligence data. The tool currently lacks a GUI and is designed for terminal use. The plugin system is under development to enable dynamic feature expansion.
Install pycryptodome following instructions at https://www.pycryptodome.org/src/installation
Ensure the requests Python module is installed
Obtain a pre-shared API key (available for purchase) to use the toolspyglass --ip 1.2.3.4
Query the API for detailed threat intelligence on a single IP address
spyglass --ips 1.2.3.4 5.6.7.8
Query the API for multiple IP addresses in one call