COSSAS / sacti
SACTI - Securely aggregate CTI sightings and report them on MISP
☆14Updated 2 years ago
Alternatives and similar repositories for sacti:
Users that are interested in sacti are comparing it to the libraries listed below
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated last month
- ☆24Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 6 months ago
- External twitter feeder for AIL framework☆16Updated 2 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated last year
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 3 years ago
- Synapse Rapid Power-up for SinkDB☆11Updated 2 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆32Updated 2 months ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago
- ☆14Updated 6 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Updated 3 months ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- A web scraper to create MISP events and reports☆14Updated last week
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆22Updated 3 years ago
- Open-source Fabric templates for cybersecurity and compliance☆17Updated 3 months ago
- ☆15Updated 7 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- certstream + analytics☆10Updated 5 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago