Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
☆19Jun 2, 2021Updated 4 years ago
Alternatives and similar repositories for threatfox2misp
Users that are interested in threatfox2misp are comparing it to the libraries listed below
Sorting:
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Mar 27, 2017Updated 8 years ago
- ☆16Apr 30, 2024Updated last year
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆24Jul 9, 2021Updated 4 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- CSIRT Jump Bag☆27Apr 25, 2024Updated last year
- Exports MISP events to STIX and ingest into McAfee ESM☆15Feb 12, 2020Updated 6 years ago
- The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…☆13Sep 21, 2025Updated 5 months ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34May 17, 2021Updated 4 years ago
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Aug 2, 2020Updated 5 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- Personal scripts☆15Sep 11, 2024Updated last year
- A mapping of used malware names to commonly known family names☆62Feb 21, 2023Updated 3 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Sep 18, 2023Updated 2 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated this week
- Python libary to normalize Yara signatures☆19Oct 9, 2020Updated 5 years ago
- ☆19Nov 14, 2024Updated last year
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆50Aug 30, 2025Updated 6 months ago
- IOC Data Obtained From Karakurt Hacking Team's Internal Infrastructure☆34Apr 22, 2022Updated 3 years ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- CyCAT.org taxonomies☆15May 22, 2021Updated 4 years ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆21Mar 22, 2024Updated last year
- ☆41Apr 5, 2025Updated 10 months ago
- Simple yara rule manager☆67Dec 27, 2022Updated 3 years ago
- Python based CLI for MalwareBazaar☆39Jul 22, 2025Updated 7 months ago
- MineMeld nodes for MISP☆19Jan 23, 2024Updated 2 years ago
- Dissect triage scripts for Citrix NetScaler devices☆69Nov 17, 2025Updated 3 months ago
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 3 years ago
- An OpenTAXII Configuration for MISP☆88Sep 29, 2022Updated 3 years ago
- Presentation materials for talks I've given.☆20Oct 14, 2019Updated 6 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Jan 6, 2022Updated 4 years ago
- Open Source Cyber Threat Intelligence Feed Collector☆17Sep 6, 2021Updated 4 years ago
- Security Monitoring Resolution Categories☆138Nov 25, 2021Updated 4 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆26Nov 19, 2020Updated 5 years ago
- DomainsProject.org HTTP worker☆25Dec 11, 2022Updated 3 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆56Oct 22, 2025Updated 4 months ago
- Build Automated Machine Images for MISP☆29Jun 9, 2023Updated 2 years ago