MISP / misp-warninglistsLinks
Warning lists to inform users of MISP about potential false-positives or other information in indicators
☆583Updated last week
Alternatives and similar repositories for misp-warninglists
Users that are interested in misp-warninglists are comparing it to the libraries listed below
Sorting:
- Zeek-Formatted Threat Intelligence Feeds☆375Updated this week
- MISP Docker (XME edition)☆282Updated last year
- Cortex Analyzers Repository☆466Updated this week
- MISP trainings, threat intel and information sharing training materials with source code☆414Updated 3 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆545Updated last year
- Extract and aggregate threat intelligence.☆882Updated last year
- Python library using the MISP Rest API☆472Updated last week
- DFIRTrack - The Incident Response Tracking Application☆525Updated 11 months ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆355Updated 2 weeks ago
- User guide of MISP☆273Updated 8 months ago
- Online hash checker for Virustotal and other services☆834Updated 5 months ago
- A (nearly) production ready Dockered MISP☆232Updated last year
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,075Updated last week
- TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains…☆590Updated this week
- A set of Zeek scripts to detect ATT&CK techniques.☆602Updated last year
- Python API Client for TheHive☆232Updated this week
- E-Mail Header Analyzer☆687Updated 2 years ago
- Documentation of Cortex☆174Updated last year
- Zeek Log Cheatsheets☆297Updated 3 weeks ago
- Docker image for MISP☆134Updated 3 weeks ago
- Repository of YARA rules made by Trellix ATR Team☆609Updated 5 months ago
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆582Updated this week
- Sophos-originated indicators-of-compromise from published reports☆630Updated 3 weeks ago
- Tools for hunting for threats.☆592Updated 4 months ago
- Documentation of TheHive☆399Updated last year
- A knowledge base of actionable Incident Response techniques☆648Updated 3 years ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆377Updated last week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆937Updated last year
- Standard-Format Threat Intelligence Feeds☆122Updated this week
- Sublime rules for email attack detection, prevention, and threat hunting.☆324Updated this week