MISP/misp-galaxy external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MISP/misp-galaxy

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MISP/misp-galaxy)

Close

MISP / misp-galaxyView on GitHubMore

• External links
• Readme badge

Clusters and elements to attach to MISP events or attributes (like threat actors)

☆625Jun 4, 2026Updated this week

Alternatives and similar repositories for misp-galaxy

Users that are interested in misp-galaxy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MISP / misp-taxonomies

  View on GitHub
  Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
  ☆297Updated this week
• MISP / misp-modules

  View on GitHub
  Modules for expansion services, enrichment, import and export in MISP and other tools.
  ☆368Jun 2, 2026Updated last week
• MISP / misp-objects

  View on GitHub
  Definition, description and relationship types of MISP objects
  ☆108Jun 1, 2026Updated last week
• MISP / MISP

  View on GitHub
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,335Jun 2, 2026Updated last week
• MISP / misp-book

  View on GitHub
  User guide of MISP
  ☆289Mar 20, 2026Updated 2 months ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• MISP / PyMISP

  View on GitHub
  Python library using the MISP Rest API
  ☆485May 19, 2026Updated 2 weeks ago
• MISP / data-processing

  View on GitHub
  Scripts to process big chunks of data from MISP and do in depth correlations on samples.
  ☆12Jul 2, 2016Updated 9 years ago
• yeti-platform / yeti

  View on GitHub
  Your Everyday Threat Intelligence
  ☆1,991May 15, 2026Updated 3 weeks ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,579Jan 12, 2026Updated 4 months ago
• MISP / misp-training

  View on GitHub
  MISP trainings, threat intel and information sharing training materials with source code
  ☆432Mar 30, 2026Updated 2 months ago
• CyberMonitor / APT_CyberCriminal_Campagin_Collections

  View on GitHub
  APT & CyberCriminal Campaign Collection
  ☆4,088Jul 25, 2024Updated last year
• InQuest / ThreatIngestor

  View on GitHub
  Extract and aggregate threat intelligence.
  ☆914May 26, 2026Updated last week
• mitre / cti

  View on GitHub
  Cyber Threat Intelligence Repository expressed in STIX 2.0
  ☆2,072May 12, 2026Updated 3 weeks ago
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,963Jun 1, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• MISP / PyMISPGalaxies

  View on GitHub
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆20Feb 10, 2026Updated 3 months ago
• certtools / intelmq

  View on GitHub
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,116Apr 28, 2026Updated last month
• MISP / misp-website

  View on GitHub
  MISP website (hugo-based)
  ☆25Updated this week
• aptnotes / data

  View on GitHub
  APTnotes data
  ☆1,791Dec 16, 2024Updated last year
• RedDrip7 / APT_Digital_Weapon

  View on GitHub
  Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
  ☆969Feb 28, 2026Updated 3 months ago
• MISP / PyTaxonomies

  View on GitHub
  Python module to use the MISP Taxonomies
  ☆31May 19, 2026Updated 2 weeks ago
• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆727Aug 17, 2025Updated 9 months ago
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,956May 20, 2026Updated 2 weeks ago
• KasperskyLab / klara

  View on GitHub
  Kaspersky's GReAT KLara
  ☆731Jul 24, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,756Jan 12, 2026Updated 4 months ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,296Jun 2, 2026Updated last week
• flowintel / cocktailparty

  View on GitHub
  CocktailParty is a data broker system based on phoenix framework
  ☆23Apr 23, 2025Updated last year
• MISP / vintage-misp-workbench

  View on GitHub
  MISP Workbench
  ☆28Oct 19, 2016Updated 9 years ago
• InQuest / iocextract

  View on GitHub
  Defanged Indicator of Compromise (IOC) Extractor.
  ☆580Aug 28, 2024Updated last year
• CIRCL / AIL-framework

  View on GitHub
  AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
  ☆1,372Jun 2, 2026Updated last week
• flowintel / flowintel

  View on GitHub
  An open source platform to support analysts to organise their case and tasks
  ☆141Updated this week
• MISP / misp-dashboard

  View on GitHub
  A live dashboard for a real-time overview of threat intelligence from MISP instances
  ☆207Jul 10, 2023Updated 2 years ago
• PaloAltoNetworks / misp-to-autofocus

  View on GitHub
  Script for pulling events from a MISP database and converting them to Autofocus queries.
  ☆13Dec 28, 2015Updated 10 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• OTRF / Security-Datasets

  View on GitHub
  Re-play Security Events
  ☆1,762Mar 20, 2024Updated 2 years ago
• StrangerealIntel / CyberThreatIntel

  View on GitHub
  Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
  ☆727Dec 26, 2022Updated 3 years ago
• armbues / ioc_parser

  View on GitHub
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Feb 24, 2023Updated 3 years ago
• MISP / MISP-maltego

  View on GitHub
  Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
  ☆184Jun 23, 2024Updated last year
• hslatman / awesome-threat-intelligence

  View on GitHub
  A curated list of Awesome Threat Intelligence resources
  ☆10,281May 31, 2026Updated last week
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆983May 8, 2025Updated last year
• dod-cyber-crime-center / DC3-MWCP

  View on GitHub
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆346May 21, 2026Updated 2 weeks ago