demisto / tools
A collection of demisto tools
☆16Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for tools
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Python Wrapper for Tanium's SOAP API☆45Updated 5 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- ☆48Updated 8 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 6 years ago
- An OpenTAXII Configuration for MISP☆81Updated 2 years ago
- Carbon Black Feeds☆70Updated last year
- A utility repo to assist with converting between MISP and STIX formats☆64Updated 3 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 2 months ago
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- ☆36Updated 8 years ago
- Red Canary Carbon Black API☆20Updated 8 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 6 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Carbon Black API - Python language bindings☆147Updated 2 months ago
- Parse a report and import the events into MISP☆28Updated 9 years ago
- Harbinger Threat Intelligence☆82Updated 8 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 6 months ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆90Updated 7 years ago
- Bro scripts written by CrowdStrike Services☆146Updated 3 years ago
- Script for generating Bro intel files from pdf or html reports☆75Updated 8 years ago
- Docker container for MISP☆96Updated 6 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆54Updated 3 years ago