certtools / intelmqLinks
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
☆1,070Updated 2 weeks ago
Alternatives and similar repositories for intelmq
Users that are interested in intelmq are comparing it to the libraries listed below
Sorting:
- CRITs - Collaborative Research Into Threats☆904Updated 6 years ago
- Your Everyday Threat Intelligence☆1,888Updated this week
- Python library using the MISP Rest API☆469Updated this week
- FAME Automates Malware Evaluation☆905Updated 3 months ago
- Extract and aggregate threat intelligence.☆875Updated last year
- Incident Response Methodologies☆1,024Updated 7 years ago
- Documentation of TheHive☆398Updated last year
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆576Updated this week
- Fast Incident Response☆1,916Updated last week
- DPS' Lightweight Investigation Notebook☆432Updated last year
- A set of Zeek scripts to detect ATT&CK techniques.☆599Updated last year
- Cortex Analyzers Repository☆466Updated last week
- A collection of sources of indicators of compromise.☆889Updated 2 months ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆354Updated last month
- MISP trainings, threat intel and information sharing training materials with source code☆412Updated 2 months ago
- Real-time, container-based file scanning at enterprise scale☆933Updated 3 weeks ago
- AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project☆1,338Updated last week
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,454Updated 2 weeks ago
- An information security preparedness tool to do adversarial simulation.☆1,126Updated 6 years ago
- An analytical framework for network traffic and behavioral analytics☆453Updated 2 years ago
- Online hash checker for Virustotal and other services☆831Updated 4 months ago
- An informational repo about hunting for adversaries in your IT environment.☆1,800Updated 3 years ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆469Updated 6 years ago
- Defanged Indicator of Compromise (IOC) Extractor.☆540Updated 11 months ago
- The Python SDK for AlienVault OTX☆380Updated last year
- DFIRTrack - The Incident Response Tracking Application☆522Updated 10 months ago
- User guide of MISP☆272Updated 7 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,162Updated 2 years ago
- Actionable analytics designed to combat threats☆995Updated 3 years ago
- Create actionable data from your Vulnerability Scans☆1,389Updated 2 years ago