MISP / PyMISPGalaxies
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
☆19Updated 4 months ago
Alternatives and similar repositories for PyMISPGalaxies:
Users that are interested in PyMISPGalaxies are comparing it to the libraries listed below
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆32Updated last month
- Python module to use the MISP Taxonomies☆29Updated 2 weeks ago
- Specifications used in the MISP project including MISP core format☆51Updated 2 months ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- ☆24Updated 2 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- SightingDB is a database for Sightings☆22Updated last year
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Export MISP attributes in Yara☆12Updated 7 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated last year
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- command line tool to use the DNSDB Flexible Search API extensions.☆16Updated 7 months ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- A collection of typical false positive indicators☆55Updated 4 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 6 months ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- Scripts for accessing and transforming cyber threat intelligence☆26Updated 9 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 2 months ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Passive DNS Common Output Format☆36Updated 7 months ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- ☆33Updated 4 years ago