cudeso / misp-reportingLinks
A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and target sector and country.
☆10Updated last week
Alternatives and similar repositories for misp-reporting
Users that are interested in misp-reporting are comparing it to the libraries listed below
Sorting:
- A web scraper to create MISP events and reports☆14Updated last month
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆29Updated last month
- Can you pay the ransom in your country?☆14Updated last year
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆14Updated 3 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 5 months ago
- The core backend server handling API requests and task management☆39Updated this week
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15Updated 2 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- AIL project training materials☆30Updated last week
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 2 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- Repo for experimenting and testing MCP server builds for CTI-related research.☆24Updated 2 weeks ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated 2 months ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆27Updated this week
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 7 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 10 months ago
- Summarize CTI reports with OpenAI☆16Updated this week
- A YARA & Malware Analysis Toolkit written in Rust.☆31Updated last week
- ☆11Updated last year
- An extension of the sigma standard to include security metrics.☆15Updated 2 years ago
- Pythia is a versatile query format designed to facilitate the discovery of malicious infrastructure by seamlessly converting into the syn…☆33Updated 9 months ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- Hundred Days of Yara Challenge☆12Updated 2 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- A simple tool designed to create Atomic Red Team tests with ease.☆43Updated 2 months ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- Lightweight Python-Based Malware Analysis Pipeline☆34Updated 2 weeks ago
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 2 months ago