certtools / intelmq
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
☆999Updated last week
Alternatives and similar repositories for intelmq:
Users that are interested in intelmq are comparing it to the libraries listed below
- CRITs - Collaborative Research Into Threats☆898Updated 5 years ago
- Your Everyday Threat Intelligence☆1,821Updated this week
- FAME Automates Malware Evaluation☆881Updated 3 weeks ago
- Extract and aggregate threat intelligence.☆851Updated last year
- Python library using the MISP Rest API☆453Updated 2 weeks ago
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆556Updated this week
- A collection of sources of indicators of compromise.☆839Updated 5 months ago
- Tool to extract indicators of compromise from security reports in PDF format☆433Updated 2 years ago
- An information security preparedness tool to do adversarial simulation.☆1,115Updated 5 years ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆464Updated 6 years ago
- DPS' Lightweight Investigation Notebook☆427Updated last year
- Cyber Analytics Repository☆923Updated 11 months ago
- Incident Response Methodologies☆1,025Updated 6 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆578Updated 8 months ago
- Modules for expansion services, enrichment, import and export in MISP and other tools.☆353Updated this week
- MISP trainings, threat intel and information sharing training materials with source code☆401Updated last month
- Actionable analytics designed to combat threats☆982Updated 2 years ago
- ☆1,066Updated 5 years ago
- Cortex Analyzers Repository☆448Updated this week
- User guide of MISP☆266Updated 2 months ago
- Defanged Indicator of Compromise (IOC) Extractor.☆521Updated 6 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,146Updated last year
- Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.☆270Updated last week
- Cortex: a Powerful Observable Analysis and Active Response Engine☆1,386Updated 4 months ago
- Online hash checker for Virustotal and other services☆822Updated 10 months ago
- Configuration files for the SOF-ELK VM☆1,557Updated 2 weeks ago
- DFIRTrack - The Incident Response Tracking Application☆491Updated 6 months ago
- The Python SDK for AlienVault OTX☆370Updated 10 months ago
- Tool to gather Threat Intelligence indicators from publicly available sources☆658Updated 5 years ago
- Modular file scanning/analysis framework☆620Updated 5 years ago