InQuest / ThreatIngestor
Extract and aggregate threat intelligence.
☆853Updated last year
Alternatives and similar repositories for ThreatIngestor:
Users that are interested in ThreatIngestor are comparing it to the libraries listed below
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆558Updated 2 weeks ago
- MISP trainings, threat intel and information sharing training materials with source code☆404Updated last month
- A set of Zeek scripts to detect ATT&CK techniques.☆583Updated 9 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆524Updated 7 months ago
- A collection of resources for Threat Hunters☆878Updated 5 months ago
- Actionable analytics designed to combat threats☆981Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,145Updated last year
- Online hash checker for Virustotal and other services☆822Updated last week
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆596Updated 5 years ago
- DFIRTrack - The Incident Response Tracking Application☆493Updated 6 months ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆562Updated 3 months ago
- Repository of YARA rules made by Trellix ATR Team☆583Updated 2 weeks ago
- Your Everyday Threat Intelligence☆1,837Updated this week
- Re-play Security Events☆1,629Updated last year
- Cortex Analyzers Repository☆450Updated this week
- Cyber Analytics Repository☆929Updated 11 months ago
- ReversingLabs YARA Rules☆804Updated this week
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆557Updated 2 years ago
- ☆1,068Updated 5 years ago
- Python library using the MISP Rest API☆457Updated this week
- Open Source Security Events Metadata (OSSEM)☆1,260Updated 2 years ago
- Indicators from Unit 42 Public Reports☆710Updated last week
- A Python package to interact with the Mitre ATT&CK Framework☆475Updated last year
- A collection of sources of indicators of compromise.☆843Updated 5 months ago
- Digital Forensics Investigation Platform☆808Updated 5 months ago
- Scripts and a (future) library to improve users' interactions with the ATT&CK content☆584Updated last year
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated this week
- SIEM Tactics, Techiques, and Procedures☆616Updated last month
- Documentation of TheHive☆396Updated last year
- Mapping the MITRE ATT&CK Matrix with Osquery☆790Updated last year