PaloAltoNetworks / minemeld-mispLinks
MineMeld nodes for MISP
☆19Updated last year
Alternatives and similar repositories for minemeld-misp
Users that are interested in minemeld-misp are comparing it to the libraries listed below
Sorting:
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Sysmon Splunk App☆47Updated 7 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆39Updated 3 years ago
- automate your MISP installs☆68Updated 5 years ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Updated 5 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆69Updated 4 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 2 years ago
- ☆77Updated 6 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- Volatility plugins developed and maintained by the community☆21Updated 11 months ago
- ☆55Updated 3 years ago
- ☆49Updated 4 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- ☆34Updated 4 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- Expert Investigation Guides☆52Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated 2 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Scripts for TheHive.☆23Updated 5 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated last week
- This repository is created to add value to existing Network Security Monitoring solutions.☆43Updated 8 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20Updated 3 years ago
- InvestigationPlaybookSpec☆73Updated 7 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 4 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago