malicialab / iocsearcher
A library and command line tool for extracting indicators of compromise (IOCs) from security reports in PDF, HTML, or text formats
☆25Updated this week
Related projects: ⓘ
- ☆43Updated last year
- STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling☆31Updated last year
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆22Updated 11 months ago
- ☆75Updated 3 weeks ago
- ☆24Updated last year
- Graph Representation of MITRE ATT&CK's CTI data☆47Updated 4 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆122Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆74Updated 2 years ago
- Import Mitre Att&ck into Neo4j database☆32Updated last year
- Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…☆50Updated 2 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆12Updated 7 months ago
- Collection of rules created using YARA-Signator over Malpedia☆110Updated 9 months ago
- ☆27Updated last week
- Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…☆157Updated 10 months ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆76Updated 2 years ago
- A python app to predict Att&ck tactics and techniques from cyber threat reports☆111Updated 10 months ago
- Code for shelLM tool☆41Updated 9 months ago
- A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports☆18Updated last year
- A CALDERA plugin☆33Updated last month
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- Source code used at TweetFeed.live☆36Updated last year
- ☆14Updated this week
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆56Updated 4 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆99Updated 5 months ago
- Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports☆17Updated 10 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆93Updated 2 weeks ago
- IOCs for various malware families☆11Updated 2 months ago
- Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE…☆33Updated 5 months ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆104Updated 2 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆51Updated last week