Ransomware Intelligence CLI

A professional command-line interface for retrieving and analyzing ransomware intelligence from the Ransomware.live API.

Features

• 🔍 Comprehensive Intelligence: Access detailed ransomware data from Ransomware.live
• 🎨 Professional UI: Clean, color-coded interface with well-formatted tables
• 📊 Data Visualization: Organized presentation of victim information and statistics
• 🌐 Targeted Searches: Filter by keyword, country, sector, and date
• 🕵️ Group Intelligence: Detailed information about ransomware groups
• ⚡ Fast Performance: Responsive with visual loading indicators

Installation

Prerequisites

• Rust and Cargo (Install via rustup)

Building from Source

# Clone the repository
git clone https://github.com/cybrly/ransomware-intel.git
cd ransomware-intel

# Build the project
cargo build --release

# The binary will be available in target/release/ransomware-intel

Usage

# Get help and see all available commands
ransomware-intel --help

# Display API information
ransomware-intel info

# Get recent victims (default: 10)
ransomware-intel recent-victims
ransomware-intel recent --limit 20

# Get information about a specific ransomware group
ransomware-intel group lockbit

# List all ransomware groups
ransomware-intel groups

# Search for victims by keyword
ransomware-intel search bank

# Get victims by country code
ransomware-intel country US --limit 15

# Get victims by industry sector
ransomware-intel sector healthcare --limit 5

# Get victims by year/month
ransomware-intel date 2023
ransomware-intel date 2023 01 --limit 10

Examples

Viewing Recent Victims

$ ransomware-intel recent-victims
┏━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┓
┃  RECENT VICTIMS  ┃
┗━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┛

┌─────────────────────────────────┬───────────┬─────────┬──────────────────────┬────────────┐
│ Victim                          │ Group     │ Country │ Sector               │ Date       │
├─────────────────────────────────┼───────────┼─────────┼──────────────────────┼────────────┤
│ Medical Center                  │ akira     │ US      │ Healthcare           │ 2024-02-20 │
│ Quantum Industries              │ lockbit   │ UK      │ Manufacturing        │ 2024-02-19 │
│ Global Financial Services       │ play      │ CA      │ Financial Services   │ 2024-02-18 │
└─────────────────────────────────┴───────────┴─────────┴──────────────────────┴────────────┘

Showing 3 of 250 victims

Searching for Victims

$ ransomware-intel search healthcare
┏━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┓
┃  SEARCH RESULTS FOR 'HEALTHCARE'  ┃
┗━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┛

┌─────────────────────────────────┬───────────┬─────────┬──────────────────────┬────────────┐
│ Victim                          │ Group     │ Country │ Sector               │ Date       │
├─────────────────────────────────┼───────────┼─────────┼──────────────────────┼────────────┤
│ Medical Center                  │ akira     │ US      │ Healthcare           │ 2024-02-20 │
│ Regional Health System          │ medusa    │ US      │ Healthcare           │ 2024-02-15 │
│ Healthcare Associates           │ qilin     │ AU      │ Healthcare           │ 2024-02-10 │
└─────────────────────────────────┴───────────┴─────────┴──────────────────────┴────────────┘

Total victims found: 28

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgments

• Ransomware.live for providing the API and data
• Built with Rust 🦀