demisto / tools
A collection of demisto tools
☆16Updated 6 years ago
Alternatives and similar repositories for tools:
Users that are interested in tools are comparing it to the libraries listed below
- InvestigationPlaybookSpec☆72Updated 7 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 5 months ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 6 years ago
- Python Wrapper for Tanium's SOAP API☆45Updated 5 years ago
- Carbon Black Feeds☆72Updated last year
- ☆36Updated 8 years ago
- Demisto Client for Python☆70Updated 2 months ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Collaborative Open Playbook Standard☆153Updated last year
- Script for generating Bro intel files from pdf or html reports☆76Updated 9 years ago
- Docker container for MISP☆96Updated 6 years ago
- Red Canary Carbon Black API☆20Updated 9 years ago
- STIX Visualization Tool☆107Updated 6 years ago
- An OpenTAXII Configuration for MISP☆80Updated 2 years ago
- Bro scripts to be shared with the community☆109Updated 11 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- Bro scripts written by CrowdStrike Services☆146Updated 3 years ago
- Prototypes for MineMeld nodes☆39Updated 3 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 7 months ago
- Threat Feed Aggregation, Made Easy☆166Updated 4 years ago
- ☆55Updated 2 years ago
- Carbon Black API Resources☆93Updated 7 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 8 months ago
- Command line interface to Carbon Black Response☆38Updated 4 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- ☆64Updated 2 years ago
- stoQ Public Plugins☆71Updated last year
- Splunk Boss of the SOC v1 data set.☆111Updated 6 years ago
- Parse a report and import the events into MISP☆28Updated 9 years ago
- ☆72Updated 3 years ago