aaronkaplan / openai-cti-summarizer

Related projects: ⓘ

• opencybersecurityalliance / oca-iob
  Augmentation to Machine Readable CTI
  ☆25Updated this week
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆15Updated 2 years ago
• aaronkaplan / stochasticCTIExtractor
  Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports
  ☆17Updated 10 months ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆14Updated last year
• cyentific-rni / stix2.1-coa-playbook-extension
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆21Updated 9 months ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆30Updated 2 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• signalscorps / file2stix
  ☆14Updated this week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆49Updated 2 weeks ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• tropChaud / Categorized-Adversary-TTPs
  Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…
  ☆50Updated 2 years ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆30Updated last year
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆39Updated 4 months ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 2 years ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆47Updated this week
• M3NIX / sigmaio
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆47Updated last year
• eCrimeLabs / MISP-PurgeEvents
  Cleanup of older MISP events can require some work until now
  ☆22Updated last year
• tropChaud / Cyber-Adversary-Heatmaps
  Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.
  ☆34Updated 2 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆18Updated 4 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 2 years ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆24Updated 9 months ago
• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 2 years ago
• korniko98 / pivot-atlas
  ☆79Updated last month
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆48Updated 2 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆47Updated 2 weeks ago
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆40Updated 4 years ago
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆29Updated 8 months ago
• jasonsford / intel_collector
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆30Updated 10 months ago
• fox-it / citrix-netscaler-triage
  Dissect triage script for Citrix NetScaler devices
  ☆21Updated 2 months ago
• marjatech / threatfox2misp
  Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
  ☆19Updated 3 years ago