CERT-Bund / misp-warninglists-analyzerLinks
Checks observables/ioc in TheHive/Cortex against the MISP warningslists
☆14Updated 7 years ago
Alternatives and similar repositories for misp-warninglists-analyzer
Users that are interested in misp-warninglists-analyzer are comparing it to the libraries listed below
Sorting:
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- ☆16Updated 10 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- Web based analysis platform for use with the AWS_IR command line tool.☆17Updated 8 years ago
- Python-based cloud node for local use☆11Updated 7 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 7 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- ☆14Updated 7 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- RegRipper wrapper for simplified bulk parsing or registry hives☆9Updated 6 years ago
- BSidesLV 2015 Exploit Kit Analysis Workshop Files☆27Updated 9 years ago
- ☆9Updated 7 years ago
- Splunk integration with MISP☆12Updated 7 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- Mass Triage Tools☆20Updated 4 months ago
- Use DNS to hunt for threats including DGAs☆15Updated 9 years ago
- Maltego Transform to put entities into MISP events☆27Updated 3 years ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Updated 8 years ago
- Some rules, scripts of some use to us☆9Updated 7 months ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- How can you track the hunting techniques you come up with?☆13Updated 7 years ago