ThreatResponse / threatresponse_webLinks
Web based analysis platform for use with the AWS_IR command line tool.
☆17Updated 8 years ago
Alternatives and similar repositories for threatresponse_web
Users that are interested in threatresponse_web are comparing it to the libraries listed below
Sorting:
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆15Updated 9 years ago
- Mass Triage Tools☆20Updated 3 months ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Python-based cloud node for local use☆11Updated 7 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Maltego Transform to put entities into MISP events☆27Updated 3 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆21Updated 6 years ago
- Extract information from MISP via the API☆15Updated 8 years ago
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13Updated 7 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 3 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Powershell Functions to interact with TheHive-Project☆10Updated 5 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- ☆30Updated 6 years ago
- irCRpull is a PowerShell script utilized to pull several system artifacts, utilizing the free tool CrowdResponse, from a live Win7+ syste…☆14Updated 10 years ago
- SANS Hunting on the Cheap☆35Updated 9 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- CRITs IOC Visualization in Maltego☆28Updated 10 years ago