InQuest / iocextractLinks
Defanged Indicator of Compromise (IOC) Extractor.
☆535Updated 9 months ago
Alternatives and similar repositories for iocextract
Users that are interested in iocextract are comparing it to the libraries listed below
Sorting:
- MISP trainings, threat intel and information sharing training materials with source code☆411Updated 3 weeks ago
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆569Updated this week
- Extract and aggregate threat intelligence.☆868Updated last year
- Tool to extract indicators of compromise from security reports in PDF format☆436Updated 2 years ago
- IOC from articles, tweets for archives☆313Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆376Updated 3 years ago
- Indicators from Unit 42 Public Reports☆715Updated last month
- Python library using the MISP Rest API☆468Updated this week
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆352Updated 3 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆565Updated 6 months ago
- Repository of YARA rules made by Trellix ATR Team☆600Updated 3 months ago
- Actionable analytics designed to combat threats☆989Updated 3 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆594Updated 11 months ago
- PCAP Samples for Different Post Exploitation Techniques☆363Updated 4 years ago
- Online hash checker for Virustotal and other services☆829Updated 3 months ago
- DFIRTrack - The Incident Response Tracking Application☆519Updated 9 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆708Updated 2 years ago
- A Python package to interact with the Mitre ATT&CK Framework☆476Updated last year
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated 2 weeks ago
- YARA Rules I come across on the internet☆341Updated last year
- A (nearly) production ready Dockered MISP☆232Updated last year
- A collection of red team and adversary emulation resources developed and released by MITRE.☆512Updated 4 years ago
- MISP Docker (XME edition)☆282Updated last year
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆467Updated 6 years ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆412Updated last year
- Awesome VirusTotal Intelligence Search Queries☆333Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,158Updated last year
- 16,432 Free Yara rules created by☆384Updated 6 years ago
- Cortex Analyzers Repository☆461Updated last week
- Volatility plugin for extracts configuration data of known malware☆489Updated last year