MISP / misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
☆558Updated this week
Alternatives and similar repositories for misp-galaxy:
Users that are interested in misp-galaxy are comparing it to the libraries listed below
- Extract and aggregate threat intelligence.☆859Updated last year
- Repository of YARA rules made by Trellix ATR Team☆592Updated last month
- Python library using the MISP Rest API☆460Updated 2 weeks ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated 2 weeks ago
- MISP trainings, threat intel and information sharing training materials with source code☆406Updated last week
- A set of Zeek scripts to detect ATT&CK techniques.☆585Updated 9 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆528Updated 7 months ago
- Tool to extract indicators of compromise from security reports in PDF format☆434Updated 2 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆374Updated 2 years ago
- Indicators from Unit 42 Public Reports☆710Updated 2 weeks ago
- Cortex Analyzers Repository☆455Updated this week
- Cyber Analytics Repository☆933Updated last year
- ReversingLabs YARA Rules☆814Updated last week
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆706Updated 2 years ago
- User guide of MISP☆266Updated 3 months ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆565Updated 4 months ago
- Online hash checker for Virustotal and other services☆824Updated last month
- Actionable analytics designed to combat threats☆982Updated 2 years ago
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆597Updated 5 years ago
- YARA Rules I come across on the internet☆337Updated last year
- IOC from articles, tweets for archives☆313Updated last year
- DFIRTrack - The Incident Response Tracking Application☆498Updated 7 months ago
- The Python SDK for AlienVault OTX☆370Updated 11 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,151Updated last year
- Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.☆272Updated last week
- A collection of sources of indicators of compromise.☆850Updated 6 months ago
- Sophos-originated indicators-of-compromise from published reports☆578Updated 3 weeks ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆409Updated last year
- A collection of red team and adversary emulation resources developed and released by MITRE.☆502Updated 4 years ago
- A collection of resources for Threat Hunters☆881Updated 6 months ago