MISP / misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
☆531Updated this week
Related projects ⓘ
Alternatives and complementary repositories for misp-galaxy
- Extract and aggregate threat intelligence.☆831Updated 9 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆506Updated 2 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆565Updated 4 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆704Updated last year
- MISP trainings, threat intel and information sharing training materials with source code☆389Updated this week
- Python library using the MISP Rest API☆445Updated this week
- Repository of YARA rules made by Trellix ATR Team☆570Updated 11 months ago
- Tool to extract indicators of compromise from security reports in PDF format☆429Updated last year
- Indicators from Unit 42 Public Reports☆702Updated last month
- ReversingLabs YARA Rules☆769Updated last month
- Cortex Analyzers Repository☆434Updated last week
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆363Updated 2 years ago
- Python Script to access ATT&CK content available in STIX via a public TAXII server☆556Updated 5 months ago
- Actionable analytics designed to combat threats☆972Updated 2 years ago
- Cyber Analytics Repository☆908Updated 7 months ago
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆587Updated 5 years ago
- Online hash checker for Virustotal and other services☆809Updated 6 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,138Updated last year
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆345Updated this week
- IOC from articles, tweets for archives☆311Updated 11 months ago
- A collection of resources for Threat Hunters☆855Updated last month
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆346Updated 3 years ago
- YARA Rules I come across on the internet☆334Updated 7 months ago
- A collection of sources of indicators of compromise.☆806Updated last month
- A collection of red team and adversary emulation resources developed and released by MITRE.☆492Updated 3 years ago
- ☆1,051Updated 5 years ago
- User guide of MISP☆259Updated last month
- DFIRTrack - The Incident Response Tracking Application☆482Updated 2 months ago
- A Python package to interact with the Mitre ATT&CK Framework☆468Updated last year
- Open Source Security Events Metadata (OSSEM)☆1,238Updated last year