cmu-sei / cyobstract

Related projects ⓘ

Alternatives and complementary repositories for cyobstract

• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆91Updated last week
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• stephenbrannon / IOCextractor
  IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
  ☆135Updated 8 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆64Updated 3 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆89Updated 6 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated last year
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 5 months ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆79Updated 3 years ago
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆30Updated 6 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 8 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆76Updated 3 weeks ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆96Updated 5 months ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆148Updated 6 months ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆80Updated 2 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆190Updated 6 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆83Updated last year
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆60Updated 11 months ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆184Updated last year
• DCSO / MISP-dockerized
  ☆33Updated 4 years ago
• Neo23x0 / evt2sigma
  Log Entry to Sigma Rule Converter
  ☆105Updated 2 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆166Updated 4 years ago
• plyara / plyara
  Parse YARA rules and operate over them more easily.
  ☆174Updated 4 months ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 3 weeks ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆103Updated 6 years ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆49Updated 7 months ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆140Updated last year
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆158Updated last year
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆121Updated 3 years ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆44Updated 2 years ago