doksu / TA-asngenLinks
ASN Lookup Generator for Splunk
☆10Updated last year
Alternatives and similar repositories for TA-asngen
Users that are interested in TA-asngen are comparing it to the libraries listed below
Sorting:
- Universal Honey Pot☆29Updated last month
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- InvestigationPlaybookSpec☆72Updated 8 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 5 years ago
- ☆38Updated 7 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- ☆55Updated 3 years ago
- Report Generation from the Carbon Black REST API☆15Updated 3 years ago
- Build Automated Machine Images for MISP☆29Updated 2 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 8 years ago
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- MineMeld nodes for MISP☆19Updated last year
- Splunk csv to KVStore ES Threat Intel☆11Updated 9 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- first commit☆20Updated 2 weeks ago
- automate your MISP installs☆68Updated 5 years ago
- Threat Feed Aggregation, Made Easy☆168Updated 5 years ago
- Docker container for MISP☆96Updated 7 years ago
- A collection of awesome resources built for and around the Splunk Phantom platform.☆15Updated 5 years ago
- MISP - Ansible installation script☆22Updated 6 years ago
- Command line interface to Carbon Black Response☆38Updated 5 years ago
- A set of templates for documenting threat intelligence☆75Updated 12 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…☆67Updated 7 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago