csirt-tooling-org / csirt-tooling-best-practices

Related projects: ⓘ

• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆14Updated 3 months ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated last year
• ail-project / ail-feeder-twitter
  External twitter feeder for AIL framework
  ☆15Updated last year
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆15Updated last month
• ail-project / ail-training
  AIL project training materials
  ☆22Updated last week
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆14Updated last year
• 3c7 / infrastructure-tracking-schema
  ☆24Updated last year
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 3 years ago
• eCrimeLabs / cratos-fastapi
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Updated this week
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆29Updated last year
• Te-k / commands-for-sec
  Useful commands for infosec
  ☆28Updated last year
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆29Updated this week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆49Updated 2 weeks ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆18Updated 4 years ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆12Updated 3 months ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆19Updated this week
• hashlookup / a-ray-grass
  a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…
  ☆13Updated 2 years ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated 8 months ago
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆13Updated 9 months ago
• ANSSI-FR / sftp2misp
  Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
  ☆15Updated last year
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆48Updated last week
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 2 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆46Updated 10 months ago
• dbarzin / pandora-box
  USB Scanning device
  ☆20Updated 2 months ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated 3 weeks ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆35Updated last year