casework / CASE-ExamplesLinks
☆12Updated last week
Alternatives and similar repositories for CASE-Examples
Users that are interested in CASE-Examples are comparing it to the libraries listed below
Sorting:
- The Python implementation of the AFF4 standard.☆45Updated 2 months ago
- Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph☆41Updated 4 months ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆128Updated 2 years ago
- Golang Library to interact with your MISP instance☆22Updated 6 years ago
- Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …☆20Updated 5 months ago
- Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen☆17Updated last year
- Firepit - STIX Columnar Storage☆17Updated last year
- A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data☆27Updated 9 months ago
- Cisco Orbital - Osquery queries by Talos☆136Updated last year
- gyp: A pure Go YARA parser☆106Updated last year
- Python framework for collecting and analyzing TLS certificate data via the Certificate Transparency Network☆12Updated 8 months ago
- A Go implementation and parser for Sigma rules.☆95Updated 8 months ago
- CocktailParty is a data broker system based on phoenix framework☆23Updated 9 months ago
- Cyber-investigation Analysis Standard Expression (CASE) Ontology☆72Updated 4 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆304Updated 8 months ago
- Chapter 9: Disseminate☆15Updated 8 years ago
- stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats a…☆37Updated 3 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 3 years ago
- Architecture - design and implementation of the D4 project architecture☆16Updated 7 months ago
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆25Updated last year
- A web scraper to create MISP events and reports☆17Updated 7 months ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆17Updated 3 weeks ago
- Rust implementation of the DCSO Bloom filter☆29Updated 6 months ago
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15Updated 2 years ago
- Golang library that implements a sigma log rule parser and match engine.☆104Updated last year
- An open source platform to support analysts to organise their case and tasks☆122Updated last week
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Updated 2 years ago
- ☆21Updated last year
- Summarize CTI reports with OpenAI☆17Updated 3 weeks ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆49Updated 3 years ago