MISP / misp-galaxyLinks
Clusters and elements to attach to MISP events or attributes (like threat actors)
☆579Updated last week
Alternatives and similar repositories for misp-galaxy
Users that are interested in misp-galaxy are comparing it to the libraries listed below
Sorting:
- Extract and aggregate threat intelligence.☆879Updated last year
- Defanged Indicator of Compromise (IOC) Extractor.☆540Updated 11 months ago
- Python library using the MISP Rest API☆471Updated last week
- Indicators from Unit 42 Public Reports☆719Updated last week
- MISP trainings, threat intel and information sharing training materials with source code☆413Updated 2 months ago
- Repository of YARA rules made by Trellix ATR Team☆608Updated 5 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆600Updated last year
- Tool to extract indicators of compromise from security reports in PDF format☆437Updated 2 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆379Updated 3 years ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆355Updated last week
- Cyber Analytics Repository☆954Updated 3 months ago
- ReversingLabs YARA Rules☆840Updated last month
- YARA Rules I come across on the internet☆349Updated last year
- Cortex Analyzers Repository☆466Updated this week
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆352Updated 3 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆566Updated 8 months ago
- OASIS TC Open Repository: Python APIs for STIX 2☆395Updated 3 months ago
- The Python SDK for AlienVault OTX☆385Updated last year
- Online hash checker for Virustotal and other services☆834Updated 5 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆713Updated 2 years ago
- Actionable analytics designed to combat threats☆997Updated 3 years ago
- A collection of resources for Threat Hunters☆896Updated 10 months ago
- OpenCTI Connectors☆464Updated this week
- User guide of MISP☆272Updated 7 months ago
- Yara Rule Analyzer and Statistics☆382Updated 2 years ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆469Updated 6 years ago
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆331Updated 6 months ago
- FAME Automates Malware Evaluation☆908Updated last week
- Malware Configuration And Payload Extraction☆760Updated 9 months ago
- IOC from articles, tweets for archives☆315Updated last year