carbonblack / cb-taxii-connector
Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.
☆15Updated 2 years ago
Alternatives and similar repositories for cb-taxii-connector:
Users that are interested in cb-taxii-connector are comparing it to the libraries listed below
- Carbon Black Feeds☆72Updated 2 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- A Powershell script for frequency analysis of separated values data files.☆17Updated 11 years ago
- Red Canary Carbon Black API☆20Updated 9 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- CB API scripts for IR, administration, etc.☆32Updated 5 years ago
- ☆55Updated 3 years ago
- Carbonblack Live Response from the comfort of your own terminal☆20Updated 9 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆37Updated 2 years ago
- Command line interface to Carbon Black Response☆38Updated 4 years ago
- An OpenTAXII Configuration for MISP☆81Updated 2 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Tools to search through massive amounts of data☆21Updated 5 months ago
- Bro Intel Feed Linter☆26Updated 5 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- ☆39Updated 5 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Log Examination Tool☆26Updated 8 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Volatility plugins developed and maintained by the community☆21Updated 7 months ago
- ☆48Updated 9 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- ☆17Updated 7 years ago
- ☆49Updated 4 years ago
- PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.☆50Updated 7 years ago
- Community Sharing Repository for Carbon Black and Bit9 Platforms☆27Updated 3 years ago