cmu-sei / cyobstract
A tool to extract structured cyber information from incident reports.
☆78Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for cyobstract
- Definition, description and relationship types of MISP objects☆91Updated last week
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆135Updated 8 years ago
- A utility repo to assist with converting between MISP and STIX formats☆64Updated 3 years ago
- Generate STIX XML from OpenIOC XML☆89Updated 6 years ago
- stoQ Public Plugins☆71Updated last year
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 5 months ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆79Updated 3 years ago
- Translate STIX 2 Patterning Queries☆30Updated 6 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 8 years ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆76Updated 3 weeks ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆96Updated 5 months ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆148Updated 6 months ago
- An OpenTAXII Configuration for MISP☆80Updated 2 years ago
- Django web interface for managing Yara rules☆190Updated 6 years ago
- Hunting IOCs all day every day...☆83Updated last year
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆60Updated 11 months ago
- CIF v3 -- the fastest way to consume threat intelligence☆184Updated last year
- ☆33Updated 4 years ago
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- Threat Feed Aggregation, Made Easy☆166Updated 4 years ago
- Parse YARA rules and operate over them more easily.☆174Updated 4 months ago
- A Splunk app to use MISP in background☆109Updated 3 weeks ago
- Malware/IOC ingestion and processing engine☆103Updated 6 years ago
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆49Updated 7 months ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆140Updated last year
- Mapping NSM rules to MITRE ATT&CK☆68Updated 4 years ago
- Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…☆158Updated last year
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 3 years ago
- OASIS TC Open Repository: Match STIX content against STIX patterns☆44Updated 2 years ago