SOC Level-1 phishing investigation lab using real email samples. Includes header analysis, IOC extraction, threat intelligence (VirusTotal, AbuseIPDB), MITRE ATT&CK mapping, and incident response documentation.
CJChecker is a small command-line tool that checks web applications for basic Clickjacking protection by analyzing HTTP response headers.
ExploitXcel is a gamified web application designed to teach penetration testing and vulnerability management through hands-on challenges.
HTTP security header scanner with CVE correlation, 1,200+ fingerprinting signatures, CISA KEV integration, and AI-powered remediation via MCP. Supports SARIF output for GitHub Code Scanning.
HTTP response header analyzer with a dark GUI. Fetches headers from any URL via a local Python server, flags exposed fingerprints (Server, X-Powered-By, X-Generator), checks for missing security headers, analyzes cookie flags and CORS policy, and computes a security score. Includes session history, security audit checklist, and settings.
Graphical PowerShell application designed to help investigators, security analysts, and IT professionals examine email headers for signs of phishing or spoofing. The tool parses headers from .eml and .msg files, highlights important fields, and provides insights into SPF, DKIM, and DMARC results.
Awareness of phishing tactics and email threat analysis skills.
Add a description, image, and links to the header-analysis topic page so that developers can more easily learn about it.
To associate your repository with the header-analysis topic, visit your repo's landing page and select "manage topics."