ninoseki / iocingestorLinks
An extendable tool to extract and aggregate IoCs from threat feeds
☆33Updated last year
Alternatives and similar repositories for iocingestor
Users that are interested in iocingestor are comparing it to the libraries listed below
Sorting:
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- ☆25Updated 2 years ago
- Modular command-line threat hunting tool & framework.☆17Updated 5 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated 6 months ago
- Threat Box Assessment Tool☆19Updated 3 years ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 4 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆13Updated 11 months ago
- Easy way to create a MISP event related to a Phishing page☆17Updated 2 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Updated 3 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Website crawler with YARA detection☆88Updated last year
- ☆13Updated 5 years ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Converting data from services like Censys and Shodan to a common data model☆50Updated last month
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Updated 4 years ago
- ☆14Updated 7 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.☆42Updated 4 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 6 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 4 years ago
- Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…☆15Updated 6 years ago
- The Purpose of this research tool is to provide a Python client into RiskIQ API services.☆22Updated 4 years ago