MISP / misp-warninglistsLinks
Warning lists to inform users of MISP about potential false-positives or other information in indicators
☆586Updated this week
Alternatives and similar repositories for misp-warninglists
Users that are interested in misp-warninglists are comparing it to the libraries listed below
Sorting:
- Zeek-Formatted Threat Intelligence Feeds☆376Updated this week
- Cortex Analyzers Repository☆468Updated this week
- MISP Docker (XME edition)☆283Updated last year
- MISP trainings, threat intel and information sharing training materials with source code☆416Updated 3 months ago
- Extract and aggregate threat intelligence.☆882Updated last year
- Python library using the MISP Rest API☆472Updated this week
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆355Updated 3 weeks ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,082Updated this week
- DFIRTrack - The Incident Response Tracking Application☆522Updated last year
- Defanged Indicator of Compromise (IOC) Extractor.☆549Updated last year
- A set of Zeek scripts to detect ATT&CK techniques.☆604Updated last year
- User guide of MISP☆273Updated 8 months ago
- Online hash checker for Virustotal and other services☆835Updated 6 months ago
- Documentation of Cortex☆175Updated 2 years ago
- The Python SDK for AlienVault OTX☆387Updated last year
- Standard-Format Threat Intelligence Feeds☆122Updated this week
- Docker image for MISP☆134Updated last month
- Python API Client for TheHive☆231Updated 3 weeks ago
- A (nearly) production ready Dockered MISP☆232Updated last year
- Repository of YARA rules made by Trellix ATR Team☆611Updated 6 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆324Updated this week
- Documentation of TheHive☆400Updated 2 years ago
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆583Updated last week
- A knowledge base of actionable Incident Response techniques☆649Updated 3 years ago
- TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains…☆593Updated this week
- Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS☆160Updated 11 months ago
- E-Mail Header Analyzer☆689Updated 2 years ago
- Zeek Log Cheatsheets☆297Updated last month
- Sophos-originated indicators-of-compromise from published reports☆633Updated last month
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆940Updated last year