assafmo / xioc
Extract indicators of compromise from text, including "escaped" ones.
☆159Updated 5 years ago
Alternatives and similar repositories for xioc:
Users that are interested in xioc are comparing it to the libraries listed below
- ☆53Updated 4 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- Website crawler with YARA detection☆88Updated last year
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆108Updated 7 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆77Updated 2 years ago
- ☆76Updated 6 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆41Updated 3 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 4 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 2 years ago
- A collection of infosec related scripts and information.☆53Updated 6 months ago
- PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in …☆100Updated 3 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 3 months ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Credential Phish Analysis and Automation☆96Updated 6 years ago
- Paper and Links to Crimeware in the Modern Era☆31Updated 5 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 2 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.☆56Updated 3 years ago
- rules to identify files containing juicy information like usernames, passwords etc☆128Updated 7 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- The Fastest way to consume Threat Intel☆25Updated 2 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- A toolkit for Security Researchers☆127Updated 5 years ago
- Primary data pipelines for intrusion detection, security analytics and threat hunting☆86Updated 3 years ago