certtools / intelmq
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
☆1,020Updated last week
Alternatives and similar repositories for intelmq:
Users that are interested in intelmq are comparing it to the libraries listed below
- CRITs - Collaborative Research Into Threats☆900Updated 5 years ago
- Configuration files for the SOF-ELK VM☆1,568Updated last week
- FAME Automates Malware Evaluation☆882Updated last month
- Your Everyday Threat Intelligence☆1,827Updated this week
- An informational repo about hunting for adversaries in your IT environment.☆1,756Updated 3 years ago
- Actionable analytics designed to combat threats☆982Updated 2 years ago
- A collection of sources of indicators of compromise.☆840Updated 5 months ago
- Python library using the MISP Rest API☆455Updated this week
- Online hash checker for Virustotal and other services☆822Updated 10 months ago
- Fast Incident Response☆1,848Updated this week
- Cyber Analytics Repository☆926Updated 11 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,145Updated last year
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆464Updated 6 years ago
- Extract and aggregate threat intelligence.☆851Updated last year
- Tool to extract indicators of compromise from security reports in PDF format☆434Updated 2 years ago
- AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project☆1,319Updated this week
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆557Updated this week
- DFIRTrack - The Incident Response Tracking Application☆492Updated 6 months ago
- Incident Response Methodologies☆1,025Updated 6 years ago
- A collection of resources for Threat Hunters☆878Updated 5 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆581Updated 8 months ago
- MISP trainings, threat intel and information sharing training materials with source code☆403Updated last month
- Detect Tactics, Techniques & Combat Threats☆2,126Updated last month
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,391Updated 4 months ago
- Digital Forensics artifact repository☆1,093Updated 2 months ago
- ☆1,068Updated 5 years ago
- yarGen is a generator for YARA rules☆1,617Updated 9 months ago
- Documentation of TheHive☆396Updated last year
- Open Source Security Events Metadata (OSSEM)☆1,259Updated 2 years ago
- ReversingLabs YARA Rules☆803Updated last week