PUNCH-Cyber / stoq-plugins-publicLinks
stoQ Public Plugins
☆71Updated 2 years ago
Alternatives and similar repositories for stoq-plugins-public
Users that are interested in stoq-plugins-public are comparing it to the libraries listed below
Sorting:
- InvestigationPlaybookSpec☆73Updated 7 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- Python IOC Editor☆63Updated 10 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- Hunting IOCs all day every day...☆86Updated last year
- Docker container for MISP☆96Updated 7 years ago
- IOC Management and Visualization Tool☆47Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated 8 months ago
- Mass static malware analysis tool☆95Updated 3 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆55Updated 4 years ago
- A utility repo to assist with converting between MISP and STIX formats☆69Updated 4 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆134Updated 9 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 9 years ago
- ☆37Updated 8 years ago
- Some IR notes☆73Updated 9 years ago
- ☆34Updated 5 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated last year
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆82Updated 9 years ago
- Malware/IOC ingestion and processing engine☆106Updated 6 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- A modular Python application to pull intelligence about malicious files☆122Updated 4 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆91Updated 7 years ago
- Cyber Intel Management☆49Updated 7 years ago
- A framework for receiving and redistributing abuse feeds☆124Updated 5 years ago
- CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…☆128Updated 6 years ago
- A curated list of awesome YARA rules, tools, and people.☆33Updated last year