huydhn / certstream-analytics
certstream + analytics
☆10Updated 5 years ago
Alternatives and similar repositories for certstream-analytics:
Users that are interested in certstream-analytics are comparing it to the libraries listed below
- ☆24Updated 2 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- Modular command-line threat hunting tool & framework.☆17Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 6 months ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- ☆14Updated 6 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Updated last month
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated last year
- Virustotal Data to Timesketch☆17Updated 6 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- Proof-of-concept for phishing intelligence in Elastic☆15Updated 5 years ago
- ☆22Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Python 3 library to build YARA rules.☆13Updated 3 years ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆22Updated 3 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆29Updated 4 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- ☆18Updated 6 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 2 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago