Automated IOC-Generation scripts and tools
☆24Sep 14, 2016Updated 9 years ago
Alternatives and similar repositories for iocgen
Users that are interested in iocgen are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Passive DNS server interface compliant to "Common Output Format"☆10Sep 19, 2016Updated 9 years ago
- Searches for interesting cached DNS entries.☆56May 15, 2014Updated 11 years ago
- Threat Intelligence distribution☆31Dec 30, 2015Updated 10 years ago
- Binary dynamic, static, and symbolic execution analysis tools for directed test generation☆22Nov 14, 2019Updated 6 years ago
- A sinkhole for collecting and analysing malicious traffic☆17Sep 12, 2020Updated 5 years ago
- ☆207May 3, 2023Updated 2 years ago
- WinAppDbg helper script to catch API calls☆12Mar 26, 2013Updated 12 years ago
- Corpora used to seed NSS' fuzzing targets☆10Mar 15, 2026Updated last week
- Python script to pull various IOCs from PDFs☆15Dec 22, 2014Updated 11 years ago
- A warehouse for your malware☆20Feb 25, 2013Updated 13 years ago
- Updates the Emerging Threats open ruleset for Suricata☆10Sep 20, 2015Updated 10 years ago
- Installable taxii_services☆20May 10, 2019Updated 6 years ago
- Collection of scripts, patterns, tips, notes, etc for Obsidian.md users☆14Mar 5, 2025Updated last year
- Yara Scanner For IMAP Feeds and saved Streams☆28Nov 5, 2019Updated 6 years ago
- pan-stix☆19Oct 12, 2017Updated 8 years ago
- A book about how to conduct digital forensic investigations with free and open source tools.☆12Apr 30, 2014Updated 11 years ago
- CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)☆40Aug 2, 2012Updated 13 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Parse a report and import the events into MISP☆30Oct 19, 2015Updated 10 years ago
- ☆16Mar 16, 2026Updated last week
- ☆26Jul 8, 2015Updated 10 years ago
- Scripts to process big chunks of data from MISP and do in depth correlations on samples.☆12Jul 2, 2016Updated 9 years ago
- Volatility Plugins☆22May 1, 2015Updated 10 years ago
- Auxiliary scripts for Incident Response with ELK☆11Oct 7, 2015Updated 10 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Apr 17, 2016Updated 9 years ago
- a GUI Interface for DFIR Open Source Tools☆10Jun 16, 2015Updated 10 years ago
- A framework that correlates Bro events☆18Oct 25, 2013Updated 12 years ago
- ssdeep based clustering tool☆14Jan 17, 2016Updated 10 years ago
- revised "peHash: A Novel Approach to Fast Malware Clustering"☆21Jul 13, 2016Updated 9 years ago
- Bro Snippets☆21Nov 7, 2014Updated 11 years ago
- ☆12Aug 12, 2016Updated 9 years ago
- ☆28Feb 13, 2017Updated 9 years ago
- Script for pulling events from a MISP database and converting them to Autofocus queries.☆13Dec 28, 2015Updated 10 years ago
- CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching☆35Apr 16, 2021Updated 4 years ago
- A 'Universal WHOIS' proxy server - you query it, it gives back the correct details☆42Nov 29, 2025Updated 3 months ago
- Random scripts for log mining, intel gathering, network querying, and other incident response-ish activities☆16Sep 13, 2022Updated 3 years ago
- ☆28Nov 21, 2019Updated 6 years ago
- Using osquery for Mass Incident Detection & Response☆19Jun 25, 2016Updated 9 years ago
- A modular Python application to pull intelligence about malicious files☆123Dec 4, 2020Updated 5 years ago