dnif / extractors
☆12Updated this week
Related projects: ⓘ
- ☆27Updated this week
- CyCAT.org API back-end server including crawlers☆30Updated last year
- Automatic detection engineering technical state compliance☆49Updated 2 months ago
- Website crawler with YARA detection☆87Updated last year
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆55Updated 11 months ago
- Useful commands for infosec☆28Updated last year
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated 8 months ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆29Updated this week
- A utility to trawl phishing domains and attempt to identify phishing kits as well as other malicious activity☆36Updated 2 years ago
- ☆40Updated 5 months ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆35Updated last year
- Strelka Web UI for File Submission and Analysis☆50Updated last month
- Threat hunting repo for my independent study on threat hunting with OSQuery☆28Updated 6 years ago
- Import AbuseCH IOC Feeds into MISP☆11Updated 3 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆32Updated 7 months ago
- Best practices in threat intelligence☆46Updated last year
- Threat Detection & Anomaly Detection rules for popular open-source components☆49Updated 2 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆51Updated 3 years ago
- ☆33Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆34Updated 5 years ago
- A Python DNS crawler to find identical domain names under different TLDs.☆22Updated 5 years ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated last week
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆12Updated 4 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Updated 2 years ago
- Windows Security Logging☆43Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆32Updated 2 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 2 years ago
- Automated detection rule analysis utility☆29Updated last year
- A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.☆20Updated 2 years ago