InQuest / ThreatIngestor
Extract and aggregate threat intelligence.
☆859Updated last year
Alternatives and similar repositories for ThreatIngestor:
Users that are interested in ThreatIngestor are comparing it to the libraries listed below
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆558Updated this week
- Actionable analytics designed to combat threats☆983Updated 2 years ago
- A collection of resources for Threat Hunters☆881Updated 6 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,151Updated last year
- Online hash checker for Virustotal and other services☆824Updated last month
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆597Updated 5 years ago
- Defanged Indicator of Compromise (IOC) Extractor.☆528Updated 7 months ago
- DFIRTrack - The Incident Response Tracking Application☆498Updated 7 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆585Updated 10 months ago
- MISP trainings, threat intel and information sharing training materials with source code☆407Updated this week
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆565Updated 4 months ago
- Your Everyday Threat Intelligence☆1,844Updated last week
- Repository of YARA rules made by Trellix ATR Team☆593Updated last month
- Open Source Security Events Metadata (OSSEM)☆1,263Updated 2 years ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,032Updated last week
- A collection of sources of indicators of compromise.☆850Updated 6 months ago
- Scripts and a (future) library to improve users' interactions with the ATT&CK content☆585Updated last year
- Cyber Analytics Repository☆934Updated last year
- ☆1,072Updated 5 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆706Updated 2 years ago
- Cortex Analyzers Repository☆455Updated last week
- Re-play Security Events☆1,637Updated last year
- Python library using the MISP Rest API☆460Updated 3 weeks ago
- A knowledge base of actionable Incident Response techniques☆636Updated 2 years ago
- Indicators from Unit 42 Public Reports☆710Updated 3 weeks ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated 2 weeks ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆901Updated last year
- A collection of red team and adversary emulation resources developed and released by MITRE.☆502Updated 4 years ago
- A Python package to interact with the Mitre ATT&CK Framework☆476Updated last year
- FAME Automates Malware Evaluation☆892Updated last week