MISP/threat-actor-intelligence-server

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MISP/threat-actor-intelligence-server)

MISP / threat-actor-intelligence-server

A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the known threat actors.

☆50

Alternatives and similar repositories for threat-actor-intelligence-server

Users that are interested in threat-actor-intelligence-server are comparing it to the libraries listed below

Sorting:

mitre / gocat
View on GitHub
Simplified go-cat agent for caldera
☆11Dec 18, 2023Updated 2 years ago
TheCyberViking / CoverStory
View on GitHub
A cover story generator for people who Need Quick Covers On Operations
☆13May 17, 2020Updated 5 years ago
MISP / misp-sighting-server
View on GitHub
MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
☆15Dec 24, 2023Updated 2 years ago
MISP / misp-website
View on GitHub
MISP website (hugo-based)
☆25Updated this week
CERT-Bund / misp-warninglists-analyzer
View on GitHub
Checks observables/ioc in TheHive/Cortex against the MISP warningslists
☆14Dec 27, 2017Updated 8 years ago
MISP / PyTaxonomies
View on GitHub
Python module to use the MISP Taxonomies
☆31Feb 19, 2026Updated last week
marjatech / threatfox2misp
View on GitHub
Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
☆19Jun 2, 2021Updated 4 years ago
dafthack / lab_scripts
View on GitHub
Repo for hosting various scripts for creating users for password spraying and other password attacks.
☆11Jul 9, 2020Updated 5 years ago
sans-blue-team / sec555-mdwiki-v1
View on GitHub
☆12Jan 5, 2021Updated 5 years ago
lprat / logstash-plugins
View on GitHub
My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …
☆10Jul 26, 2019Updated 6 years ago
MarkBaggett / domain_stats2
View on GitHub
☆14Feb 8, 2020Updated 6 years ago
OTRF / sigma
View on GitHub
Generic Signature Format for SIEM Systems
☆14Oct 27, 2021Updated 4 years ago
Cosive / cti-toolkit
View on GitHub
CERT Australia Cyber Threat Intelligence (CTI) Toolkit
☆15Nov 11, 2017Updated 8 years ago
MISP / yara-misp
View on GitHub
Export MISP attributes in Yara
☆12Sep 15, 2017Updated 8 years ago
paragonsec / HiveNightmare-Checker
View on GitHub
A PowerShell script that checks for dangerous ACLs on system hives and shadows
☆28Jul 21, 2021Updated 4 years ago
jordisk / TheHive2Sigma
View on GitHub
Python script to automatically create sigma rules from The hive observables
☆25Mar 17, 2019Updated 6 years ago
opensourcesec / Forager
View on GitHub
Multithreaded threat Intelligence gathering built with Python3
☆178Jan 23, 2018Updated 8 years ago
MISP / data-processing
View on GitHub
Scripts to process big chunks of data from MISP and do in depth correlations on samples.
☆12Jul 2, 2016Updated 9 years ago
MISP / misp-privacy-aware-exchange
View on GitHub
A privacy-aware exchange module to securely and privately share your indicators
☆14Aug 23, 2017Updated 8 years ago
corelight / zeek-quic
View on GitHub
Bro analyzer that detects Google's QUIC protocol
☆10Mar 2, 2021Updated 5 years ago
D4-project / analyzer-d4-passivedns
View on GitHub
A Passive DNS backend and collector
☆33Jul 16, 2022Updated 3 years ago
ninoseki / iocingestor
View on GitHub
An extendable tool to extract and aggregate IoCs from threat feeds
☆33Feb 6, 2024Updated 2 years ago
emulation-plans / emulation-plans
View on GitHub
A list of Mitre Caldera compatible emulation-plans
☆14Feb 1, 2021Updated 5 years ago
MISP / PyMISPGalaxies
View on GitHub
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
☆20Feb 10, 2026Updated 3 weeks ago
h0rv4th / c2matrix-analyzer
View on GitHub
Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
☆12Apr 18, 2020Updated 5 years ago
stricaud / TA-misp
View on GitHub
Splunk integration with MISP
☆12Apr 14, 2018Updated 7 years ago
bufferbandit / leak.docx
View on GitHub
Leak windows system info through a docx file
☆12Feb 23, 2020Updated 6 years ago
c3rb3ru5d3d53c / mwdb-feeds
View on GitHub
A Modular MWDB Utility to Collect Fresh Malware Samples
☆34May 17, 2021Updated 4 years ago
DefensiveOrigins / DomainBuildScripts
View on GitHub
Build a domain with three quick PowerShell scripts!
☆29Jun 3, 2020Updated 5 years ago
MISP / misp-objects
View on GitHub
Definition, description and relationship types of MISP objects
☆105Feb 20, 2026Updated last week
MISP / misp-grafana
View on GitHub
A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
☆19Mar 15, 2024Updated last year
ail-project / ail-feeder-telegram
View on GitHub
External telegram feeder for AIL framework
☆18Jan 21, 2026Updated last month
cyentific-rni / security-playbook-stix-misp-exchange
View on GitHub
This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
☆16Aug 24, 2022Updated 3 years ago
priamai / sigmatau
View on GitHub
An extension of the sigma standard to include security metrics.
☆16May 18, 2023Updated 2 years ago
clong / GeoIP
View on GitHub
A script for quickly gathering GeoIP data on a single or multiple IP Addresses
☆16Aug 31, 2015Updated 10 years ago
sans-blue-team / course_indices
View on GitHub
Indices for courses in SANS' Network Security Operations curriculum
☆17Feb 5, 2016Updated 10 years ago
ail-project / twint
View on GitHub
An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, fo…
☆13Aug 19, 2022Updated 3 years ago
infertux / sysechk
View on GitHub
System Security Checker is a bundle of small shell scripts to assess your computer security.
☆16Aug 31, 2019Updated 6 years ago
NotMedic / SocksLauncher
View on GitHub
☆14Oct 25, 2019Updated 6 years ago