fkie-cad / Logprep
log data pre processing, generation and shipping in python
☆27Updated this week
Related projects: ⓘ
- Zeek package for tracking long connections to report them before they have completed.☆28Updated 2 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated 9 months ago
- server for indexing and querying passive DNS observations☆44Updated 7 months ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆19Updated this week
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Updated 3 weeks ago
- A vulnerability assessment tool for system models☆13Updated 2 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Updated this week
- Network timing evaluation used to detect beacons, works with argus flow as the source☆18Updated 8 years ago
- Firepit - STIX Columnar Storage☆15Updated 3 months ago
- Pure python parser for Snort/Suricata rules.☆25Updated 6 months ago
- Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen☆16Updated 5 months ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- ☆33Updated 4 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆13Updated last year
- Python CLI and module for CIRCL hash lookup☆12Updated 3 months ago
- Analysis Correlation Engine☆23Updated 2 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆29Updated this week
- Helm chart for Open Cyber Threat Intelligence Platform☆11Updated this week
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆55Updated 11 months ago
- Napkin is a simple tool to produce statistical analysis of a text☆12Updated 6 months ago
- A Spicy protocol analyzer for WireGuard☆27Updated 4 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- Tools used by CSIRT and especially in the scope of CNW☆14Updated 3 months ago
- Picatrix is a library designed to help security analysts in a notebook environment, such as colab or jupyter.☆45Updated 2 months ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆82Updated this week
- Utility for parsing Bro log files into CSV or JSON format☆41Updated last year
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆94Updated last year
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆30Updated last year
- Best practices in threat intelligence☆46Updated last year