MISP / misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
☆558Updated last month
Alternatives and similar repositories for misp-warninglists:
Users that are interested in misp-warninglists are comparing it to the libraries listed below
- Zeek-Formatted Threat Intelligence Feeds☆353Updated this week
- Defanged Indicator of Compromise (IOC) Extractor.☆521Updated 6 months ago
- Threat Hunting queries for various attacks☆229Updated this week
- DFIRTrack - The Incident Response Tracking Application☆491Updated 6 months ago
- MISP Docker (XME edition)☆283Updated last year
- MISP trainings, threat intel and information sharing training materials with source code☆401Updated last month
- Sublime rules for email attack detection, prevention, and threat hunting.☆278Updated this week
- A set of Zeek scripts to detect ATT&CK techniques.☆578Updated 8 months ago
- Extract and aggregate threat intelligence.☆851Updated last year
- Python library using the MISP Rest API☆453Updated this week
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆556Updated this week
- Online hash checker for Virustotal and other services☆822Updated 10 months ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆353Updated this week
- Cortex Analyzers Repository☆448Updated this week
- ReversingLabs YARA Rules☆796Updated 2 weeks ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆999Updated last week
- IOC from articles, tweets for archives☆313Updated last year
- Repository of YARA rules made by Trellix ATR Team☆577Updated last year
- User guide of MISP☆266Updated 2 months ago
- A (nearly) production ready Dockered MISP☆231Updated last year
- Sophos-originated indicators-of-compromise from published reports☆569Updated last month
- Signatures and IoCs from public Volexity blog posts.☆349Updated last month
- Indicators of Compromise☆185Updated last week
- A knowledge base of actionable Incident Response techniques☆633Updated 2 years ago
- Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.☆270Updated last week
- Indicators from Unit 42 Public Reports☆708Updated this week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆344Updated this week
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆372Updated 2 years ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆884Updated last year
- Cyber Incident Response Team Playbook Battle Cards☆373Updated 10 months ago