EhsanCreator/Malwoverview-UI

GitHub: EhsanCreator/Malwoverview-UI

Stars: 1 | Forks: 0

# Malwoverview-UI 🛡️ **An Advanced, Modular Threat Hunting Interface powered by Malwoverview.** **Malwoverview-UI** is a modern web-based dashboard designed to streamline threat intelligence gathering. It acts as a powerful Graphical User Interface (GUI) for the [Malwoverview](https://github.com/alexandreborges/malwoverview) library, adding persistence, proxy management, and a user-friendly experience for security analysts. ## 📸 Dashboard Preview ### 🦠 VirusTotal Operations Comprehensive file hash analysis with vendor detection tables and clean metrics. ![VirusTotal Dashboard](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/ee1aafafd6133425.png) ### 🧩 Malware Bazaar Identify malware samples and search for families/tags easily. ![Bazaar Lookup](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/9d538642fb133430.png) ### 🔗 URLHaus Operations **2. Recent Malicious URLs:** Fetch the latest threats directly from Abuse.ch. ![URLHaus Recent](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/bcba8c9d25133436.png) ### 🦊 ThreatFox Operations **1. Search IOC:** Instantly check IPs or Domains for indicators of compromise. ![ThreatFox Search](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/2293847166133442.png) **2. Recent IOCs:** Stay updated with the latest C2 servers and botnet IPs. ![ThreatFox Recent](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/6be4a2847d133448.png) ### 🧪 Hybrid Analysis Retrieve sandbox reports directly within the dashboard. ![Hybrid Analysis](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/ee94eead9d133454.png) ### ⚙️ Configuration & Proxy Management Manage your API keys via the UI (saved locally) and toggle Proxy settings for restricted environments. ![Settings Page](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/7e9028eb6a133500.png) ## ✨ Features * **Modular Architecture:** Separate modules for VirusTotal, Malware Bazaar, URLHaus, ThreatFox, and Hybrid Analysis. * **Proxy Support:** Built-in support for HTTP/HTTPS proxies (e.g., V2Ray, NekoBox) to bypass network restrictions. * **UI-Based Configuration:** No need to edit config files manually. Set API keys and proxy settings directly in the Settings tab. * **Persistence:** Settings are saved locally to `.malwapi.conf` and persist between sessions. * **Smart Error Handling:** Friendly error messages for network issues or missing data. * **Theme Support:** Fully supports Light and Dark modes. ## 🚀 Supported Providers 1. **VirusTotal:** File Hash, Domain, and IP Reputation. 2. **Malware Bazaar:** Hash Lookup, Tag Search, Recent Samples. 3. **URLHaus:** Check Specific URLs, Recent Malicious URLs. 4. **ThreatFox:** Search IOCs (IP/Domain), Recent IOCs. 5. **Hybrid Analysis:** Sandbox Report Retrieval (Windows 7/10). ## 🛠️ Installation 1. **Clone the repository:** git clone https://github.com/EhsanCreator/Malwoverview-UI.git cd Malwoverview-UI 2. **Install requirements:** pip install -r requirements.txt 3. **Run the Dashboard:** streamlit run app.py 4. **First Run:** * Go to the **⚙️ Settings** tab. * Enter your API Keys (links provided in the app). * (Optional) Set your Proxy IP/Port (Default: `127.0.0.1:2080`). * Click **Save Configuration**. ## ⚙️ Configuration The application stores your keys in a local file named `.malwapi.conf`. **Note:** This file is automatically added to `.gitignore` to prevent accidental leakage of your API keys. ## 📄 License This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.