14 comments

[ 2.3 ms ] story [ 36.5 ms ] thread
Nice i like it ,, stared so i can check it out later
That explains the lowest comment to star ratio I have ever noticed.
(comment deleted)
I'm actually surprised no one built this before this is exactly what soc analyst would need.
Note that a Virustotal API key is required... so it doesn't seem very privacy friendly.
I used one of the temp mail addresses. No phone number (or any other verifiable) information required. Even then, I don’t know if this is really a huge problem given the nature of this tool.
This looks like a really cool little CLI script, and I could see myself using it as a regular CLI tool instead of whois and Googling. It looks really good, it gathers a lot of extra info, and uses a bunch of highly regarded external sources like virustotal, shodan, graynoise and more.

Only criticism is that it does use or need a bunch of accounts and API keys which probably makes the setup a bit tedious: https://github.com/pirxthepilot/wtfis?tab=readme-ov-file#dat... obviously a necessary evil though given what the tool is doing.

Off topic, in case this needs a backronym with no profanity, sharing some ideas; first one is my favorite:

- What's That Funny Internet Site?

- Web Threat Forensic Inspection Service

- Warden That Flags Internet Suspicion

TIL a new word - backronym
(comment deleted)