ace-ecosystem / ACE
Analysis Correlation Engine
☆23Updated 2 years ago
Related projects: ⓘ
- Specifications used in the MISP project including MISP core format☆45Updated 2 months ago
- ☆15Updated 6 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated 9 months ago
- Best practices in threat intelligence☆46Updated last year
- Build Automated Machine Images for MISP☆28Updated last year
- pcapdj - dispatch pcap files☆45Updated 4 years ago
- stoQ Public Plugins☆71Updated last year
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆94Updated 3 months ago
- Potiron - Normalize, Index and Visualize Network Capture☆83Updated 5 years ago
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆55Updated 11 months ago
- CARET - A tool for viewing cyber analytic relationships☆51Updated 4 years ago
- ☆11Updated this week
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆19Updated this week
- A simple many-rules to many-files YARA scanner for incident response or malware zoos.☆26Updated 6 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆41Updated 2 years ago
- A collection of awesome resources built for and around the Splunk Phantom platform.☆14Updated 4 years ago
- Repository of yara rules☆57Updated last year
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆29Updated this week
- CyCAT.org taxonomies☆14Updated 3 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil …☆76Updated 7 months ago
- Yara rules for detecting malware☆21Updated 2 weeks ago
- Yara rules to be used with the Burp Yara-Scanner extension☆42Updated 2 years ago
- Sandbox feature upgrade with the help of wrapped samples☆75Updated 6 years ago
- ☆66Updated this week
- A mapping of used malware names to commonly known family names☆61Updated last year
- A Passive DNS backend and collector☆31Updated 2 years ago
- D4 core software (server and sample sensor client)☆43Updated 8 months ago
- Setting up a training environment for MISP☆11Updated last year
- A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.☆18Updated last year
- A Python library for parsing, manipulating, and generating MAEC content.☆41Updated 3 years ago