csirt-tooling-org / csirt-tooling-best-practicesLinks
CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
☆16Updated 3 years ago
Alternatives and similar repositories for csirt-tooling-best-practices
Users that are interested in csirt-tooling-best-practices are comparing it to the libraries listed below
Sorting:
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 2 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated last month
- Tools used by CSIRT and especially in the scope of CNW☆17Updated 3 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated 2 months ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.☆14Updated last week
- Automate the regular transfer of AIS data into a MISP Server☆10Updated last year
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A web scraper to create MISP events and reports☆17Updated 3 months ago
- External twitter feeder for AIL framework☆16Updated 2 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆15Updated last month
- Scripts to deploy and update MISP in air-gapped environments☆16Updated 2 months ago
- Rulezet is an open-source web platform for sharing, evaluating, improving, and managing cybersecurity detection rules (YARA, Sigma, Suric…☆18Updated this week
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated 2 weeks ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- ☆25Updated 3 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆34Updated 2 years ago
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆21Updated 3 weeks ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 3 years ago
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆18Updated 7 years ago
- Lua plugin to extract data from Wireshark and convert it into MISP format☆49Updated last year
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- CERTITUDE - A python package to classify malicious URLs☆20Updated 3 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆13Updated 8 years ago
- AIL project training materials☆36Updated 3 months ago
- Notes for High Availability MISP in AWS☆19Updated 5 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Python client and module for Vulnerability-Lookup.☆12Updated last month
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆31Updated this week
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago