DefensePointSecurity / threat_note

Related projects: ⓘ

• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆462Updated 5 years ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆244Updated last year
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆273Updated last year
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆234Updated 3 years ago
• aplura / Tango
  Honeypot Intelligence with Splunk
  ☆252Updated 5 years ago
• ciscocsirt / GOSINT
  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
  ☆536Updated last year
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆393Updated 2 years ago
• HurricaneLabs / machinae
  Machinae Security Intelligence Collector
  ☆502Updated 4 months ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆285Updated 3 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆181Updated last year
• armbues / ioc_parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆428Updated last year
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆489Updated last year
• MISP / misp-dashboard
  A live dashboard for a real-time overview of threat intelligence from MISP instances
  ☆192Updated last year
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆378Updated 5 years ago
• csirtgadgets / massive-octo-spice
  DEPRECATED - USE v3 (bearded-avenger)
  ☆227Updated 6 years ago
• mandiant / ioc_writer
  ☆200Updated last year
• MISP / misp-book
  User guide of MISP
  ☆254Updated 11 months ago
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆391Updated 11 months ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆166Updated 4 years ago
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 6 years ago
• crits / crits
  CRITs - Collaborative Research Into Threats
  ☆886Updated 5 years ago
• cloudtracer / ThreatPinchLookup
  Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
  ☆345Updated 6 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆332Updated 2 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆280Updated 6 years ago
• MISP / misp-modules
  Modules for expansion services, enrichment, import and export in MISP and other tools.
  ☆337Updated 2 weeks ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆599Updated 4 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆174Updated 3 years ago
• LogRhythm-Labs / PIE
  The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
  ☆178Updated 4 years ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆616Updated 4 years ago