frikky / hive4go

Related projects: ⓘ

• freetaxii / server
  A cyber threat intelligence server based on TAXII 2 and written in Golang
  ☆30Updated 5 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆34Updated this week
• Shuffle / Shuffle-docs
  Documentation used for Shuffle
  ☆18Updated this week
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 3 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆76Updated 3 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 6 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆27Updated 4 years ago
• DCSO / MISP-dockerized
  ☆33Updated 4 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆41Updated 3 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• UNIT777 / Email2TheHive
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Updated 7 years ago
• vulsio / go-cti
  Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.
  ☆29Updated this week
• ilyaglow / cortex-tgbot
  Threat intelligence Telegram bot based on Cortex engine
  ☆12Updated 5 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 5 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• yvesago / imap-honey
  IMAP or SMTP honeypot written in Golang
  ☆24Updated 2 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆77Updated 2 years ago
• adulau / threat-intelligence.eu
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆48Updated 2 years ago
• MalwareSoup / sysmon2neo4j
  ☆15Updated 7 years ago
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆80Updated 4 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆45Updated 2 months ago
• 0xrawsec / golang-misp
  Golang Library to interact with your MISP instance
  ☆21Updated 5 years ago
• thomaspatzke / sigma-workshop
  Elasticsearch/Kibana environment and log data for Sigma workshop
  ☆26Updated 4 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆55Updated 11 months ago
• 0x4D31 / sqhunter
  ☆66Updated this week
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆32Updated last year
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆16Updated 3 years ago
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆35Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• c2defense / windows-event-collection
  Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model
  ☆12Updated 3 years ago