ngsoti / rulezet-coreLinks
Rulezet is an open-source web platform for sharing, evaluating, improving, and managing cybersecurity detection rules (YARA, Sigma, Suricata, etc). It aims to foster collaboration among professionals and enthusiasts to improve the quality and reliability of detection rules.
☆37Updated this week
Alternatives and similar repositories for rulezet-core
Users that are interested in rulezet-core are comparing it to the libraries listed below
Sorting:
- A web scraper to create MISP events and reports☆17Updated 6 months ago
- AIL project training materials☆38Updated 5 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated 4 months ago
- An open source platform to support analysts to organise their case and tasks☆120Updated 3 weeks ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆34Updated 2 months ago
- ☆101Updated last month
- Can you pay the ransom in your country?☆14Updated 2 years ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆17Updated 3 months ago
- Website for ail-typo-squatting library☆69Updated 3 months ago
- Rules shared by the community from 100 Days of YARA 2025☆39Updated last week
- Open-source Fabric templates for cybersecurity and compliance☆28Updated 11 months ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 3 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Updated 2 years ago
- Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports☆18Updated 2 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 3 years ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆54Updated 2 months ago
- ☆30Updated 4 years ago
- A collection of tips for using MISP.☆75Updated last year
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆41Updated 8 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆49Updated 3 years ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated 2 years ago
- Turn any blog into structured threat intelligence.☆43Updated 2 weeks ago
- Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …☆20Updated 4 months ago
- Cleanup of older MISP events can require some work until now☆27Updated 3 months ago
- Summarize CTI reports with OpenAI☆17Updated 2 weeks ago
- Scripts to deploy and update MISP in air-gapped environments☆17Updated 2 months ago
- Repo for experimenting and testing MCP server builds for CTI-related research.☆27Updated 7 months ago
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 3 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 6 months ago