cloudina / hawk
Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage
☆19Updated 2 weeks ago
Related projects: ⓘ
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Generic Signature Format for SIEM Systems☆14Updated 2 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆37Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.☆15Updated 3 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆41Updated 2 years ago
- Useful commands for infosec☆28Updated last year
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Yara rules for malicious javascript files from public repositories or written by me.☆11Updated 2 years ago
- ☆28Updated 6 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Automated Static Analysis Framework☆10Updated 2 years ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆21Updated last year
- A commercial grade threat intelligence feed thats validated and updated every half hour.☆19Updated last year
- Pure Honeypots with an automated bash script☆19Updated 3 years ago
- This module installs and configures MISP (Malware Information Sharing Platform)☆13Updated this week
- ☆23Updated this week
- SACTI - Securely aggregate CTI sightings and report them on MISP☆13Updated last year
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 2 years ago
- ☆15Updated 6 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆13Updated 2 years ago
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆18Updated 6 years ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆19Updated this week
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Example Suricata rules implementing some of my detection tactics☆20Updated last year
- Very basic CLI SIEM (Security Information and Event Management system).☆34Updated 6 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated last year
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…☆23Updated 3 years ago