kevinperlow / SANS-DFIR-2017Links
☆20Updated 8 years ago
Alternatives and similar repositories for SANS-DFIR-2017
Users that are interested in SANS-DFIR-2017 are comparing it to the libraries listed below
Sorting:
- Triage automation for suspect URLs☆13Updated 6 years ago
- API wrapper for Maltiverse☆19Updated 11 months ago
- dns logger for passive dns collection☆42Updated 13 years ago
- The Fastest way to consume Threat Intel☆26Updated 3 years ago
- Different tools, koen.vanimpe@cudeso.be☆136Updated 2 months ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Virustotal Data to Timesketch☆17Updated 6 years ago
- Cowrie Honeypot Obscurer☆17Updated 4 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- Home to the ActorTrackr source code☆29Updated 8 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Cyber Threat Intelligence Feeds☆68Updated last year
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Updated 6 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communities☆66Updated last year
- Providing timelines based on OSINT Reports☆32Updated 2 years ago
- Tools for hunting security threats☆12Updated 5 years ago
- Look up an email domain (@example.com), using Python, across all known domains.☆45Updated 2 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆45Updated 6 years ago
- Maltego CaseFile entities for information security investigations, malware analysis and incident response☆66Updated 7 years ago
- A toolkit for Security Researchers☆128Updated 6 years ago
- Transforms for the AlienVault OTX service☆39Updated 8 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 6 years ago
- Small App for reading from MHN's hpfeeds broker and writing splunk logs☆10Updated 5 years ago
- Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…☆19Updated 2 months ago
- Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.☆73Updated 2 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Deploy MISP Project software with Vagrant.☆45Updated 5 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated last year
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- Combining OSINT sources in Elastic Stack☆80Updated 4 years ago