csirt-tooling-org / csirt-tooling-best-practicesLinks
CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
☆16Updated 3 years ago
Alternatives and similar repositories for csirt-tooling-best-practices
Users that are interested in csirt-tooling-best-practices are comparing it to the libraries listed below
Sorting:
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 3 years ago
- External twitter feeder for AIL framework☆16Updated 2 years ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.☆23Updated this week
- Tools used by CSIRT and especially in the scope of CNW☆17Updated 6 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated 5 months ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated 3 months ago
- Automate the regular transfer of AIS data into a MISP Server☆10Updated last year
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A web scraper to create MISP events and reports☆17Updated 6 months ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆17Updated this week
- ☆24Updated 3 years ago
- Notes for High Availability MISP in AWS☆19Updated 6 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 5 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated 2 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆35Updated this week
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆23Updated last month
- Python client and module for Vulnerability-Lookup.☆14Updated last month
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated 2 years ago
- AIL project training materials☆38Updated 5 months ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Updated 2 years ago
- Scripts to deploy and update MISP in air-gapped environments☆17Updated 2 months ago
- CyCAT.org taxonomies☆15Updated 4 years ago
- A privacy-aware exchange module to securely and privately share your indicators☆14Updated 8 years ago
- Incident Notification Platform by @NC3-LU☆11Updated this week
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15Updated 2 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 3 years ago
- CocktailParty is a data broker system based on phoenix framework☆23Updated 8 months ago
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆19Updated 7 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆48Updated 3 years ago
- ☆14Updated 7 years ago