CyCat-project / cycat-taxonomyLinks
CyCAT.org taxonomies
☆15Updated 4 years ago
Alternatives and similar repositories for cycat-taxonomy
Users that are interested in cycat-taxonomy are comparing it to the libraries listed below
Sorting:
- ☆25Updated 2 years ago
- ☆14Updated 7 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 6 years ago
- ☆15Updated 7 years ago
- Specifications used in the MISP project including MISP core format☆51Updated last month
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated last week
- A collection of typical false positive indicators☆55Updated 4 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆60Updated 2 months ago
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- Site for IWS book content☆18Updated 6 years ago
- Python script to automatically create sigma rules from The hive observables☆25Updated 6 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- Splunk integration with MISP☆12Updated 7 years ago
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 3 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- SightingDB is a database for Sightings☆22Updated 2 years ago
- Python module to use the MISP Taxonomies☆29Updated last week
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Updated 8 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- Deploy MISP Project software with Vagrant.☆44Updated 5 years ago
- ☆52Updated 6 years ago