TedDriggs / ctiLinks
Cyber threat intelligence crates for Rust
☆15Updated last year
Alternatives and similar repositories for cti
Users that are interested in cti are comparing it to the libraries listed below
Sorting:
- Framework definitions that allow to build a custom SIEM.☆27Updated 9 months ago
- A cross platform forensic parser written in Rust!☆83Updated this week
- A document tagging library☆30Updated 3 months ago
- Rust bindings for VirusTotal/Yara☆78Updated 4 months ago
- A Rust library for parsing and evaluating Sigma rules☆13Updated 2 months ago
- Alternative YARA scanning engine☆71Updated 2 years ago
- An implementation of a Windows Event Collector server running on GNU/Linux.☆75Updated this week
- MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery☆48Updated this week
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- A parser for the MFT (Master File Table) format☆142Updated last year
- SysFlow collection probe☆16Updated 6 months ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated 2 weeks ago
- LOKI2 - Simple IOC and YARA Scanner☆97Updated 2 weeks ago
- provides a Suricata Eve output for Kafka with Suricate Eve plugin☆15Updated 3 years ago
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 2 years ago
- Golang library that implements a sigma log rule parser and match engine.☆95Updated last year
- CAPE Auto-Hardened Installer☆24Updated 5 months ago
- Threat hunting with Sysmon and ArangoDB Graphs☆11Updated 5 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Updated 6 months ago
- Augmentation to Machine Readable CTI☆31Updated 2 months ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- Basically a KrabsETW rip-off written in Rust☆70Updated 11 months ago
- File Capability Extractor☆13Updated 3 months ago
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆55Updated this week
- Convert Sigma Rules to different formats☆11Updated 11 months ago
- pySigma Elasticsearch backend☆54Updated last week
- stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats a…☆34Updated 2 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆89Updated 3 weeks ago
- Fast, inline geolocation decoration of IPv4 and IPv6 addresses written in Rust☆27Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆105Updated 2 months ago