jonticknor / ElasticPhish

Related projects ⓘ

Alternatives and complementary repositories for ElasticPhish

• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• jaegeral / osint_to_timesketch
  Virustotal Data to Timesketch
  ☆17Updated 5 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 2 months ago
• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago
• Hestat / intel-sharing
  Repository of Information sharing on threats and indicators
  ☆12Updated 4 years ago
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• notx11 / urlScan2Hive
  Triage automation for suspect URLs
  ☆12Updated 5 years ago
• d3vzer0 / cnc-relay
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Updated 5 years ago
• inishantgrover / Shodmon
  The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided
  ☆33Updated 3 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆32Updated 9 months ago
• fastlorenzo / redelk-kibana-app
  Kibana app for RedELK
  ☆16Updated last year
• scriptingislife / s3eker
  s3eker is an extensible way to find open S3 buckets.
  ☆17Updated 4 years ago
• huydhn / certstream-analytics
  certstream + analytics
  ☆10Updated 4 years ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 7 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 6 years ago
• appsecco / osint-viz-platform-reconvillage
  The repository for Building visualisation platforms for OSINT data using open source solutions
  ☆30Updated 6 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 2 years ago
• honeydbio / honeydb-python
  HoneyDB Python Module
  ☆13Updated 9 months ago
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆20Updated 3 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• ytisf / polarising-pine
  Set of PoC for exploits for QRadar SIEM
  ☆15Updated 6 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated last year
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago