building-adversary-infrastructure-tracking-system
CommunityAutomate adversary infrastructure mapping.
Data & Analytics#whois#threat-intelligence#graph-analysis#pivoting#certificate-transparency#infrastructure-tracking#passive-dns
AuthorAxxxxxxaaann
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Automates the tracking of threat actor infrastructure by aggregating passive DNS, certificate transparency, WHOIS data, and IP enrichment to map and monitor C2 networks.
Core Features & Use Cases
- Passive DNS and WHOIS pivoting to discover related domains and IPs
- Certificate transparency and TLS data for linking infrastructure
- Infrastructure graphing, clustering, and hub identification for mapping threat networks
- Example: Build an automated tracker from a seed domain to visualize C2 infrastructure over time.
Quick Start
Configure the tracker with a seed domain and run the agent to begin mapping threat actor infrastructure.
Dependency Matrix
Required Modules
requests
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: building-adversary-infrastructure-tracking-system Download link: https://github.com/Axxxxxxaaann/KAIRI-Skills/archive/main.zip#building-adversary-infrastructure-tracking-system Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.