ace-ecosystem / ACE
Analysis Correlation Engine
☆23Updated 3 years ago
Alternatives and similar repositories for ACE:
Users that are interested in ACE are comparing it to the libraries listed below
- Specifications used in the MISP project including MISP core format☆51Updated 2 months ago
- Potiron - Normalize, Index and Visualize Network Capture☆85Updated 6 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- Rekall Forensics and Incident Response Framework with rVMI extensions☆33Updated 4 years ago
- Best practices in threat intelligence☆46Updated 2 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 5 months ago
- Yara syntax highlighting☆25Updated 3 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy☆19Updated 4 months ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆20Updated this week
- CARET - A tool for viewing cyber analytic relationships☆54Updated 5 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- ☆15Updated 7 years ago
- Cockroach is your primitive & immortal swiss army knife.☆47Updated 3 years ago
- A FUSE module to mount captured network data☆37Updated 3 weeks ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- Analysis Correlation Engine☆26Updated 5 years ago
- A Single Library Parser to extract meta information,static analysis and detect macros within the files.☆1Updated 6 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated last year
- Set of PoC for exploits for QRadar SIEM☆15Updated 7 years ago
- Generate network maps from packet captures☆31Updated 5 years ago
- A Python library for parsing, manipulating, and generating MAEC content.☆41Updated 4 years ago
- Repository of yara rules☆59Updated 2 years ago
- first commit☆20Updated last year
- D4 core software (server and sample sensor client)☆42Updated last year
- stoQ Public Plugins☆71Updated 2 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 2 months ago