eCrimeLabs / cratos-fastapi
The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such as SIEM, DNS, Proxies, Firewalls, EDR, NDR and other that can consume a file with indicators.
☆13Updated last month
Alternatives and similar repositories for cratos-fastapi:
Users that are interested in cratos-fastapi are comparing it to the libraries listed below
- SACTI - Securely aggregate CTI sightings and report them on MISP☆13Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- A web scraper to create MISP events and reports☆14Updated 2 years ago
- ☆24Updated 2 years ago
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆15Updated last year
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆32Updated last month
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 5 months ago
- ☆14Updated 6 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Updated 2 months ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆37Updated 2 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 2 years ago
- command line tool to use the DNSDB Flexible Search API extensions.☆16Updated 7 months ago
- certstream + analytics☆10Updated 5 years ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆14Updated last month
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆26Updated last week
- CyCAT.org taxonomies☆14Updated 3 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆20Updated this week
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- Yara rules☆21Updated last year
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- A script to create and assign SOP tasks into the cases☆19Updated 4 years ago