Xyrodileas / misp-k8s
Automated deployment of MISP and MISP-Dashboard via K8S and AWS
☆18Updated 4 years ago
Related projects: ⓘ
- Recon Hunt Queries☆76Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- A collection of typical false positive indicators☆54Updated 3 years ago
- misp-cloud - Cloud-ready images of MISP☆70Updated 2 years ago
- ☆33Updated 4 years ago
- A Splunk app to use MISP in background☆109Updated 9 months ago
- Python library for threat intelligence☆78Updated 2 months ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- ☆34Updated 3 years ago
- Attack Range to test detection against nativel serverless cloud services and environments☆35Updated 3 years ago
- Security Monitoring Resolution Categories☆138Updated 2 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆99Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆76Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆105Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- A community event for security researchers to share their favorite notebooks☆105Updated 7 months ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆106Updated 4 years ago
- Sigma Detection Rule Repository☆84Updated 4 years ago
- Repository containing Jupyter Notebooks for working with OSQuery tables and data☆16Updated 4 years ago
- Bot to create MISP events from data in Slack☆17Updated 8 months ago
- Paper and Links to Crimeware in the Modern Era☆31Updated 5 years ago
- automate your MISP installs☆66Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆36Updated last year
- Cisco Orbital - Osquery queries by Talos☆122Updated 3 weeks ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Updated 4 years ago
- ☆78Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆92Updated 2 years ago