MISP / misp-galaxyLinks
Clusters and elements to attach to MISP events or attributes (like threat actors)
☆561Updated this week
Alternatives and similar repositories for misp-galaxy
Users that are interested in misp-galaxy are comparing it to the libraries listed below
Sorting:
- Tool to extract indicators of compromise from security reports in PDF format☆435Updated 2 years ago
- Python library using the MISP Rest API☆463Updated 3 weeks ago
- Indicators from Unit 42 Public Reports☆711Updated last week
- MISP trainings, threat intel and information sharing training materials with source code☆408Updated last week
- Extract and aggregate threat intelligence.☆865Updated last year
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated last week
- A set of Zeek scripts to detect ATT&CK techniques.☆592Updated 11 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆531Updated 9 months ago
- User guide of MISP☆268Updated 5 months ago
- Repository of YARA rules made by Trellix ATR Team☆596Updated 2 months ago
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆352Updated 3 years ago
- ReversingLabs YARA Rules☆816Updated last month
- Cyber Analytics Repository☆939Updated 2 weeks ago
- The Python SDK for AlienVault OTX☆375Updated last year
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆465Updated 6 years ago
- Cortex Analyzers Repository☆460Updated last week
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆564Updated 5 months ago
- Actionable analytics designed to combat threats☆988Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆375Updated 3 years ago
- A collection of sources of indicators of compromise.☆867Updated 3 weeks ago
- ☆1,073Updated 6 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆707Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,156Updated last year
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆320Updated 3 months ago
- YARA Rules I come across on the internet☆340Updated last year
- Open Source Security Events Metadata (OSSEM)☆1,269Updated 2 years ago
- MITRE ATT&CK Website☆531Updated this week
- A collection of red team and adversary emulation resources developed and released by MITRE.☆512Updated 4 years ago
- Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.☆276Updated last week
- Documentation of TheHive☆397Updated last year