MAECProject / python-maecLinks
A Python library for parsing, manipulating, and generating MAEC content.
☆42Updated 4 years ago
Alternatives and similar repositories for python-maec
Users that are interested in python-maec are comparing it to the libraries listed below
Sorting:
- Specifications used in the MISP project including MISP core format☆51Updated last week
- A utility repo to assist with converting between MISP and STIX formats☆68Updated 4 years ago
- ☆33Updated 5 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- A tool to extract structured cyber information from incident reports.☆80Updated 6 years ago
- A Python library for parsing, manipulating, and generating CybOX content.☆78Updated 5 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Definition, description and relationship types of MISP objects☆99Updated 2 weeks ago
- YETI is a TAXII implementation☆46Updated 6 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated last month
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Workbench: A scalable python framework for security research and development teams.☆92Updated 5 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox☆11Updated 9 years ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆81Updated 4 months ago
- ☆28Updated 8 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 3 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- Zeek support for Community ID flow hashing.☆35Updated 2 years ago
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆50Updated last year
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- A package manager for Zeek☆46Updated this week
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy☆19Updated 7 months ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- Translate STIX 2 Patterning Queries☆31Updated 6 years ago
- A framework for receiving and redistributing abuse feeds☆124Updated 5 years ago