csirt-tooling-org / csirt-tooling-best-practicesLinks
CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
☆16Updated 3 years ago
Alternatives and similar repositories for csirt-tooling-best-practices
Users that are interested in csirt-tooling-best-practices are comparing it to the libraries listed below
Sorting:
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 2 years ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.☆13Updated last week
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated 5 months ago
- Tools used by CSIRT and especially in the scope of CNW☆16Updated last month
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated last week
- Automate the regular transfer of AIS data into a MISP Server☆10Updated last year
- External twitter feeder for AIL framework☆16Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Scripts to deploy and update MISP in air-gapped environments☆16Updated 3 weeks ago
- A web scraper to create MISP events and reports☆16Updated last month
- ☆25Updated 2 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆15Updated last month
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated this week
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆33Updated last year
- CERTITUDE - A python package to classify malicious URLs☆20Updated 3 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆13Updated 7 years ago
- Lua plugin to extract data from Wireshark and convert it into MISP format☆48Updated last year
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- AIL project training materials☆34Updated last month
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15Updated 2 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 3 years ago
- Notes for High Availability MISP in AWS☆19Updated 5 years ago
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆21Updated last week
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- Golang implementation of PyMISP-feedgenerator☆18Updated 3 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆18Updated 7 years ago
- Napkin is a simple tool to produce statistical analysis of a text☆12Updated last year