InQuest / iocextractLinks
Defanged Indicator of Compromise (IOC) Extractor.
☆531Updated 9 months ago
Alternatives and similar repositories for iocextract
Users that are interested in iocextract are comparing it to the libraries listed below
Sorting:
- Repository of YARA rules made by Trellix ATR Team☆596Updated 2 months ago
- Extract and aggregate threat intelligence.☆865Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆375Updated 3 years ago
- Indicators from Unit 42 Public Reports☆711Updated last week
- Tool to extract indicators of compromise from security reports in PDF format☆435Updated 2 years ago
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆561Updated this week
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆564Updated 5 months ago
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆352Updated 3 years ago
- MISP trainings, threat intel and information sharing training materials with source code☆408Updated last week
- Python library using the MISP Rest API☆463Updated 2 weeks ago
- IOC from articles, tweets for archives☆313Updated last year
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated last week
- A Python package to interact with the Mitre ATT&CK Framework☆476Updated last year
- Cortex Analyzers Repository☆460Updated last week
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆707Updated 2 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆592Updated 11 months ago
- PCAP Samples for Different Post Exploitation Techniques☆360Updated 4 years ago
- YARA Rules I come across on the internet☆340Updated last year
- Online hash checker for Virustotal and other services☆825Updated 2 months ago
- ReversingLabs YARA Rules☆816Updated last month
- Sigma rules from Joe Security☆214Updated 6 months ago
- Actionable analytics designed to combat threats☆988Updated 3 years ago
- MISP Docker (XME edition)☆282Updated last year
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,156Updated last year
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆465Updated 6 years ago
- Python API Client for TheHive☆226Updated this week
- Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…☆164Updated last year
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- ☆1,073Updated 6 years ago
- A collection of resources for Threat Hunters☆886Updated 7 months ago