MISP / misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
☆558Updated last week
Alternatives and similar repositories for misp-warninglists:
Users that are interested in misp-warninglists are comparing it to the libraries listed below
- MISP trainings, threat intel and information sharing training materials with source code☆403Updated last month
- Extract and aggregate threat intelligence.☆852Updated last year
- Defanged Indicator of Compromise (IOC) Extractor.☆524Updated 7 months ago
- Cortex Analyzers Repository☆450Updated this week
- MISP Docker (XME edition)☆282Updated last year
- Zeek-Formatted Threat Intelligence Feeds☆358Updated this week
- Online hash checker for Virustotal and other services☆821Updated last week
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆557Updated last week
- Python library using the MISP Rest API☆456Updated this week
- Sophos-originated indicators-of-compromise from published reports☆571Updated last month
- A knowledge base of actionable Incident Response techniques☆632Updated 2 years ago
- DFIRTrack - The Incident Response Tracking Application☆492Updated 6 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,145Updated last year
- Repository of YARA rules made by Trellix ATR Team☆583Updated last week
- A set of Zeek scripts to detect ATT&CK techniques.☆582Updated 9 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆894Updated last year
- ReversingLabs YARA Rules☆804Updated this week
- Actionable analytics designed to combat threats☆982Updated 2 years ago
- Cyber Analytics Repository☆929Updated 11 months ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated 3 weeks ago
- A (nearly) production ready Dockered MISP☆231Updated last year
- A collection of resources for Threat Hunters☆878Updated 5 months ago
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆558Updated 2 months ago
- Documentation of TheHive☆396Updated last year
- Tools for hunting for threats.☆579Updated 5 months ago
- CyLR - Live Response Collection Tool☆669Updated 2 years ago
- SIEM Tactics, Techiques, and Procedures☆616Updated last month
- A repository of curated datasets from various attacks☆632Updated this week
- This content is analysis and research of the data sources currently listed in ATT&CK.☆407Updated last year
- IOC from articles, tweets for archives☆313Updated last year