drego85 / meiocLinks
Extracting IoC data from eMail
☆138Updated 2 months ago
Alternatives and similar repositories for meioc
Users that are interested in meioc are comparing it to the libraries listed below
Sorting:
- A collection of tips for using MISP.☆74Updated 10 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆52Updated 11 months ago
- ☆96Updated 2 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆110Updated 11 months ago
- Cyber Underground General Intelligence Requirements☆96Updated last year
- Forensic Artifact Collection Tool Matrix☆91Updated 11 months ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated 2 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆96Updated this week
- Sigma detection rules for hunting with the threathunting-keywords project☆56Updated 7 months ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆62Updated last year
- ☆34Updated this week
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆159Updated 6 months ago
- An open source platform to support analysts to organise their case and tasks☆107Updated last week
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆68Updated last year
- Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.☆17Updated last year
- ReWrite of AChoir in Go for Cross Platform☆41Updated last week
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆108Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 3 months ago
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- The core backend server handling API requests and task management☆48Updated this week
- CarbonBlack EDR detection rules and response actions☆72Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- A list of RMMs designed to be used in automation to build alerts☆113Updated 6 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆123Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆49Updated last month
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- Fast IOC and YARA Scanner☆83Updated 5 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆104Updated last year
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆84Updated 4 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated 9 months ago