A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry Needs, developed by those in trenches.
☆42Jan 20, 2026Updated last month
Alternatives and similar repositories for framework
Users that are interested in framework are comparing it to the libraries listed below
Sorting:
- Augmentation to Machine Readable CTI☆37Sep 9, 2025Updated 5 months ago
- Automate the regular transfer of AIS data into a MISP Server☆10Jun 5, 2024Updated last year
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆34Oct 21, 2025Updated 4 months ago
- AIL project training materials☆39Jul 17, 2025Updated 7 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- ☆12Sep 8, 2025Updated 5 months ago
- Summarize CTI reports with OpenAI☆18Feb 16, 2026Updated last week
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 4 months ago
- A web scraper to create MISP events and reports☆17Jun 30, 2025Updated 8 months ago
- A highly available AWS deployment of the Threat Intelligence platform, OpenCTI using Terraform. Native AWS resources are used where feasi…☆38Apr 23, 2023Updated 2 years ago
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆56Feb 13, 2026Updated 2 weeks ago
- A threat sighting collects the behavior of a real threats and the observables used during its engagement.☆12Mar 29, 2022Updated 3 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆19Jan 9, 2026Updated last month
- Cyber Underground General Intelligence Requirements☆98Feb 2, 2024Updated 2 years ago
- ☆21Nov 19, 2025Updated 3 months ago
- Experimental: Windows .text section compare - disk versus memory☆15Jan 21, 2015Updated 11 years ago
- Dictionary of CTI-related acronyms, terms, and jargon☆147Nov 27, 2025Updated 3 months ago
- Placeholder for IRIS-H Digital Forensics Tool☆15May 30, 2018Updated 7 years ago
- Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports☆18Nov 13, 2023Updated 2 years ago
- A visualized overview of the Initial Access Broker (IAB) cybercrime landscape☆117Oct 22, 2021Updated 4 years ago
- A collection of tips for using MISP.☆76Dec 11, 2024Updated last year
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Nov 19, 2024Updated last year
- A set of crappy Python scripts to handle RSS in an Unix way.☆47Jul 2, 2024Updated last year
- ☆42Sep 16, 2022Updated 3 years ago
- A command-line whois - like client for the WHOIS and WHOIS History APIs by WhoisXML API Inc.☆19Feb 9, 2022Updated 4 years ago
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆23Feb 11, 2026Updated 2 weeks ago
- Slides for my conference talks☆45Aug 11, 2023Updated 2 years ago
- Specifications used in the MISP project including MISP core format☆53Jan 7, 2026Updated last month
- Open-source Fabric templates for cybersecurity and compliance☆31Jan 13, 2025Updated last year
- CocktailParty is a data broker system based on phoenix framework☆23Apr 23, 2025Updated 10 months ago
- TIE is a machine learning model for inferring associated MITRE ATT&CK techniques from previously observed techniques.☆66Apr 19, 2025Updated 10 months ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆46Jan 2, 2022Updated 4 years ago
- SightingDB is a database for Sightings☆22Jun 21, 2023Updated 2 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 3 months ago
- Intel Retrieval Augmented Generation (RAG) Utilities☆91Jan 29, 2024Updated 2 years ago
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆59Apr 9, 2025Updated 10 months ago
- Golang Library to interact with your MISP instance☆22Sep 12, 2019Updated 6 years ago