Import CrowdStrike Threat Intelligence into your instance of MISP
☆51Jun 10, 2025Updated 8 months ago
Alternatives and similar repositories for MISP-tools
Users that are interested in MISP-tools are comparing it to the libraries listed below
Sorting:
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Dec 24, 2023Updated 2 years ago
- MISP website (hugo-based)☆25Updated this week
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- MineMeld nodes for MISP☆19Jan 23, 2024Updated 2 years ago
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK☆48Feb 10, 2026Updated 3 weeks ago
- This contains all the CrowdStrike API work I've done☆21Dec 5, 2019Updated 6 years ago
- Practice CTI Quiz☆13Mar 20, 2024Updated last year
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆14Mar 27, 2024Updated last year
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Sep 13, 2016Updated 9 years ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Feb 12, 2020Updated 6 years ago
- A web scraper to create MISP events and reports☆17Jun 30, 2025Updated 8 months ago
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15May 12, 2023Updated 2 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Sep 21, 2025Updated 5 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Aug 14, 2025Updated 6 months ago
- Sechead is a powerful security tool developed in Python that allows users to audit the security headers of any website. With Sechead, use…☆13May 22, 2023Updated 2 years ago
- A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB☆19Mar 15, 2024Updated last year
- Flame - Send vulnerabilities reports to SIEM☆15Jul 28, 2016Updated 9 years ago
- Crowdstrike response script containing various functions for IR/triage☆12Dec 7, 2020Updated 5 years ago
- Can you pay the ransom in your country?☆14Dec 18, 2023Updated 2 years ago
- A collection of projects supporting Azure Integrations☆32Dec 1, 2025Updated 3 months ago
- BlackBerry Threat Research & Intelligence☆100Oct 20, 2023Updated 2 years ago
- Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen☆17Apr 11, 2024Updated last year
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆52Apr 15, 2024Updated last year
- Supporting resources and documentation for FLARE @ Google Summer of Code 2023☆16Feb 7, 2023Updated 3 years ago
- Simple and efficient file shredding☆14Sep 23, 2019Updated 6 years ago
- Tools used by CSIRT and especially in the scope of CNW☆18Updated this week
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆19Jan 9, 2026Updated last month
- Python libary to normalize Yara signatures☆19Oct 9, 2020Updated 5 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated this week
- Easy way to create a MISP event related to a Phishing page☆17May 31, 2023Updated 2 years ago
- Chrome/Chromium Forensic Tool : Parses History, Visited Links, Downloaded Files and Cache☆20Feb 4, 2024Updated 2 years ago
- The CrowdStrike Falcon SDK for Python☆476Jan 1, 2026Updated 2 months ago
- [DEPRECATED] SIP Swiss army knife☆19Oct 25, 2019Updated 6 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Mar 27, 2017Updated 8 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 3 years ago
- Bot to create MISP events from data in Slack☆17Jan 10, 2024Updated 2 years ago
- Tachikoma is a security alerting framework for human beings☆22Sep 7, 2018Updated 7 years ago
- This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…☆92Mar 2, 2021Updated 5 years ago