Integration between MISP platform and McAfee MVISION EDR
☆14Mar 14, 2022Updated 3 years ago
Alternatives and similar repositories for MISP-MVISION-EDR
Users that are interested in MISP-MVISION-EDR are comparing it to the libraries listed below
Sorting:
- Collection of various MVISION EDR Integration Scripts☆32Dec 12, 2022Updated 3 years ago
- Automated threat intelligence collection with McAfee ATD, OpenDXL and MISP☆22Feb 21, 2020Updated 6 years ago
- Export MISP attributes in Yara☆12Sep 15, 2017Updated 8 years ago
- Automated OpenDXL Output information via IntelMQ☆14Jul 20, 2017Updated 8 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 8 years ago
- Malware - Machine Learning☆11Mar 24, 2018Updated 7 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Mar 19, 2019Updated 6 years ago
- Powershell Functions to interact with TheHive-Project☆11Jun 27, 2019Updated 6 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- WiP - cve-search next gen☆13Jan 18, 2020Updated 6 years ago
- Scripts to process big chunks of data from MISP and do in depth correlations on samples.☆12Jul 2, 2016Updated 9 years ago
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- A script to track malware IOCs with OSINT on Twitter.☆54May 3, 2024Updated last year
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- Fast ssdeep comparison library☆13Nov 3, 2014Updated 11 years ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Feb 12, 2020Updated 6 years ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Sep 13, 2016Updated 9 years ago
- ☆13Apr 8, 2022Updated 3 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Apr 15, 2020Updated 5 years ago
- External telegram feeder for AIL framework☆18Jan 21, 2026Updated last month
- ssdeep based clustering tool☆14Jan 17, 2016Updated 10 years ago
- Implementations of the GEA-1 and GEA-2 (GPRS Encryption Algorithm) stream ciphers in C, Python and Rust.☆17Feb 24, 2026Updated last week
- Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.☆15Jul 1, 2022Updated 3 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Mar 27, 2017Updated 8 years ago
- Practical Orientation Of MVISION EDR Query Language☆34Feb 10, 2023Updated 3 years ago
- Forensic Dropbox☆22Jul 2, 2012Updated 13 years ago
- ☆18May 16, 2013Updated 12 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆48Jan 26, 2026Updated last month
- Parallel ssdeep clustering kit☆20Dec 24, 2017Updated 8 years ago
- A curses-style interface for automatic takedown notification based on MISP events.☆20Dec 11, 2020Updated 5 years ago
- Feed Generator for MISP☆19Nov 2, 2022Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 3 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- Another MISP module for Python☆18Feb 17, 2020Updated 6 years ago
- Check IOC provided by a MISP instance on Suricata events☆18Jun 4, 2019Updated 6 years ago
- Firepit - STIX Columnar Storage☆18Jun 5, 2024Updated last year
- Python and Machine Learning Workshop at Hack.lu 2017☆82May 18, 2018Updated 7 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- s3eker is an extensible way to find open S3 buckets.☆17Jul 31, 2020Updated 5 years ago