You do malware. We scan, flag, and destroy it.
MLAB is a modular security analysis platform for IOC analysis at scale — built for developers, SOC teams, and threat researchers who need clarity, not noise.
| Type | Details |
|---|---|
| IP / CIDR | IPv4, IPv6, range analysis |
| Domains | DNS, infrastructure metadata |
| Files | Static & dynamic analysis |
| Certificates | TLS metadata, chain inspection |
mlab.sh — IOC & File Intelligence Platform
Search IPs, domains, hashes and files. Get structured, enriched, actionable intelligence in seconds — powered by 20+ analysis tools.
- IP / CIDR, domains, file hashes, certificates
- Static & dynamic file analysis (EXE, DLL, PDF, Office…)
- MITRE ATT&CK mapping, JS deobfuscator, and more
ir.mlab.sh — Self-Hosted Incident Response Platform
Turn security alerts into structured investigations — from triage to closure, on your own infrastructure.
- Alert ingestion via API (SIEM, EDR, email gateway…)
- Case management, observable tracking, full audit trail
- RBAC, team collaboration, SLA tracking
- Deploy with Docker in under 5 min · free tier included · no vendor lock-in
- Bug reports / PRs → always welcome
- Questions → open an issue or ping @Sn0wAlice
security.txt and ToS.