neu5ron / dnssinkholelistLinks
dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement domains that should be sinkholed/blocked.
☆18Updated 9 years ago
Alternatives and similar repositories for dnssinkholelist
Users that are interested in dnssinkholelist are comparing it to the libraries listed below
Sorting:
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 7 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 11 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 8 months ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- Some rules, scripts of some use to us☆9Updated 8 months ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- Cyber Intel Management☆48Updated 7 years ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 6 years ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- Mass Triage Tools☆20Updated 4 months ago
- Automation for VirusTotal☆31Updated 9 years ago
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆48Updated 3 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago