MISP / misp-sighting-server

Related projects ⓘ

Alternatives and complementary repositories for misp-sighting-server

• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated 9 months ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆14Updated last year
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆13Updated 10 months ago
• ruppde / yara_rules
  Yara rules
  ☆19Updated last year
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated last year
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 2 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 2 years ago
• marjatech / threatfox2misp
  Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
  ☆19Updated 3 years ago
• lasq88 / socgholish_finder
  ☆14Updated last year
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 2 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 4 years ago
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 2 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated 3 months ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 3 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 3 years ago
• PwCUK-CTO / rtfsig
  A tool to help malware analysts signature unique parts of RTF documents
  ☆29Updated 9 months ago
• tbarabosch / apihash_to_yara
  Generates YARA rules to detect malware using API hashing
  ☆17Updated 3 years ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated last year
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago
• 00010111 / gMetaDataParse
  ☆19Updated last year
• jasonsford / intel_collector
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆30Updated last year
• jsecurity101 / Automated-Detection-Pipeline
  ☆15Updated 3 years ago
• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago