CERT-Polska / n6Links
Automated handling of data feeds for security teams
☆138Updated last week
Alternatives and similar repositories for n6
Users that are interested in n6 are comparing it to the libraries listed below
Sorting:
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated last year
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆110Updated last year
- User guide of MISP☆268Updated 5 months ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆88Updated this week
- Open platform for modelling, collection and exchange of knowledge☆160Updated 3 weeks ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- Threat Feed Aggregation, Made Easy☆168Updated 4 years ago
- Automated Use Case Testing☆167Updated 7 years ago
- Set of Yara rules for finding files using magics headers☆137Updated 4 years ago
- Documentation of Cortex☆174Updated last year
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- Python API Client for Cortex☆32Updated 3 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Different tools, koen.vanimpe@cudeso.be☆110Updated last week
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆104Updated 11 months ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- Definition, description and relationship types of MISP objects☆100Updated last week
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 11 months ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆81Updated 2 months ago
- A curated list of awesome things related to TheHive & Cortex☆179Updated 3 years ago
- ☆130Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆246Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆153Updated 2 months ago
- IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.☆105Updated 2 months ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- A utility repo to assist with converting between MISP and STIX formats☆68Updated 4 years ago