ioc-fang / ioc-fanger

Related projects: ⓘ

• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆29Updated this week
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆48Updated last week
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• dfirence / drone
  ☆40Updated this week
• swimlane / trawl
  A utility to trawl phishing domains and attempt to identify phishing kits as well as other malicious activity
  ☆36Updated 2 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆38Updated 4 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated last year
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆55Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆27Updated 7 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 5 years ago
• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 4 years ago
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆29Updated last week
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆63Updated 4 months ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 2 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated last year
• OTRF / openhunt
  ☆33Updated 3 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 6 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆94Updated 3 months ago
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆30Updated 5 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 2 years ago
• DCSO / MISP-dockerized
  ☆33Updated 4 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• gitunique / cti-scripts
  Scripts for accessing and transforming cyber threat intelligence
  ☆24Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆50Updated 3 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆54Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆87Updated last year
• open-source-rs / The-Cyber-Intelligence-Analyst-Cookbook
  For storing of the volumes
  ☆3Updated 4 years ago