casework / CASE-ExamplesLinks
☆12Updated this week
Alternatives and similar repositories for CASE-Examples
Users that are interested in CASE-Examples are comparing it to the libraries listed below
Sorting:
- The Python implementation of the AFF4 standard.☆45Updated last month
- Golang Library to interact with your MISP instance☆22Updated 6 years ago
- Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …☆20Updated 4 months ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆128Updated 2 years ago
- Firepit - STIX Columnar Storage☆17Updated last year
- Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph☆41Updated 3 months ago
- Cyber-investigation Analysis Standard Expression (CASE) Ontology☆71Updated 3 months ago
- CocktailParty is a data broker system based on phoenix framework☆23Updated 8 months ago
- AFF4 Standard Documents☆29Updated 3 years ago
- Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen☆17Updated last year
- Returns Logs Events And Properties Parser☆123Updated 2 weeks ago
- A web scraper to create MISP events and reports☆17Updated 6 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆302Updated 8 months ago
- A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data☆25Updated 8 months ago
- Incident Notification Platform by @NC3-LU☆11Updated this week
- An open source platform to support analysts to organise their case and tasks☆120Updated 3 weeks ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Updated last year
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆17Updated 3 months ago
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆24Updated last year
- Vehicle Logs Events And Properties Parser☆94Updated 3 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 3 years ago
- Digital Forensics Artifacts Knowledge Base☆88Updated 2 weeks ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆49Updated 3 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆14Updated 8 years ago
- Cisco Orbital - Osquery queries by Talos☆136Updated last year
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Updated 2 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆113Updated 3 weeks ago
- Harvest Linux forensic data for operational triage of an event.☆52Updated last month
- Chrome Logs Events and Protobuf Parser☆39Updated 3 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated 3 months ago