neu5ron / dnssinkholelist
dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement domains that should be sinkholed/blocked.
☆18Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for dnssinkholelist
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- ☆12Updated 5 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆40Updated 4 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Historical Observations of Actionable Reputation Data☆13Updated 6 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆40Updated 6 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Automation for VirusTotal☆31Updated 8 years ago
- ☆24Updated 2 years ago
- Open Development projects for TekDefense☆77Updated 8 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- Modular command-line threat hunting tool & framework.☆17Updated 4 years ago
- Mass Triage Tools☆20Updated 4 months ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Some rules, scripts of some use to us☆9Updated 3 weeks ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- ☆14Updated 6 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 7 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆22Updated last year