bestpractical / rtir

Related projects ⓘ

Alternatives and complementary repositories for rtir

• certtools / intelmq-manager
  IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.
  ☆103Updated 4 months ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆96Updated this week
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆166Updated 4 years ago
• enisaeu / Reference-Security-Incident-Taxonomy-Task-Force
  This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.
  ☆64Updated last month
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆80Updated 2 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• MISP / misp-book
  User guide of MISP
  ☆259Updated last month
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 3 weeks ago
• teamdfir / volatility-plugins-community
  Volatility plugins developed and maintained by the community
  ☆21Updated 2 months ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 5 months ago
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆72Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 3 years ago
• halpomeranz / dfis
  Digital Forensic Investigative Scripts
  ☆72Updated this week
• MarkBaggett / domain_stats
  ☆208Updated last year
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆100Updated 5 months ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆104Updated 6 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆84Updated last week
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆73Updated 11 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆64Updated 3 years ago
• AlienVault-OTX / OTX-Apps-TAXII
  Alienvault OTX TAXII connector
  ☆54Updated 7 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆118Updated 5 years ago