ail-project / lacus

Related projects: ⓘ

• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆49Updated 2 weeks ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• eCrimeLabs / MISP-PurgeEvents
  Cleanup of older MISP events can require some work until now
  ☆22Updated last year
• korniko98 / pivot-atlas
  ☆79Updated last month
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆82Updated this week
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆113Updated 9 months ago
• corelight / threat-hunting-guide
  ☆43Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆56Updated 2 weeks ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆14Updated last year
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆30Updated 2 years ago
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆48Updated 2 weeks ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆22Updated 3 years ago
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆15Updated 2 years ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆47Updated this week
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆40Updated this week
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆85Updated 7 months ago
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆78Updated 2 months ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆35Updated last year
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆93Updated 6 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆65Updated last month
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆90Updated 2 weeks ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆90Updated 11 months ago
• cisagov / ACID
  ☆63Updated last month
• aaronkaplan / stochasticCTIExtractor
  Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports
  ☆17Updated 10 months ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆55Updated 2 years ago
• 00010111 / smbtimeline
  ☆28Updated last year
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆51Updated last week
• Casualtek / Cyberwatch
  Building a consolidated RSS feed for articles about cyberattacks
  ☆54Updated this week
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆37Updated 4 months ago
• TazWake / Public
  Collection of scripts provided for public use
  ☆28Updated last month