hashlookup / a-ray-grassLinks
a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly discard known files "pour séparer le grain de l'ivraie"
☆14Updated 2 years ago
Alternatives and similar repositories for a-ray-grass
Users that are interested in a-ray-grass are comparing it to the libraries listed below
Sorting:
- ☆24Updated 2 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Updated 4 months ago
- ☆15Updated 3 years ago
- ☆14Updated 7 years ago
- CyCAT.org taxonomies☆15Updated 4 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated 2 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Synapse Rapid Power-up for SinkDB☆11Updated 2 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated 4 months ago
- ☆15Updated 7 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- command line tool to use the DNSDB Flexible Search API extensions.☆16Updated 10 months ago
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 3 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated 2 years ago
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆21Updated this week
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated last year
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆13Updated 10 months ago
- A web scraper to create MISP events and reports☆16Updated last month
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- Firepit - STIX Columnar Storage☆16Updated last year
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- Passive DNS Common Output Format☆36Updated 9 months ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago