open-source-rs / The-Cyber-Intelligence-Analyst-CookbookLinks
For storing of the volumes
☆4Updated 5 years ago
Alternatives and similar repositories for The-Cyber-Intelligence-Analyst-Cookbook
Users that are interested in The-Cyber-Intelligence-Analyst-Cookbook are comparing it to the libraries listed below
Sorting:
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆59Updated 3 weeks ago
- Expert Investigation Guides☆51Updated 4 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Website crawler with YARA detection☆88Updated last year
- Collection of best practices to add OSINT into MISP and/or MISP communities☆66Updated last year
- Presentation Slides and Video links☆32Updated 3 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 2 years ago
- Best practices in threat intelligence☆47Updated 2 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- Converting data from services like Censys and Shodan to a common data model☆49Updated 9 months ago
- InvestigationPlaybookSpec☆73Updated 7 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆67Updated 4 years ago
- A toolkit for Security Researchers☆127Updated 5 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Searches for Insider Threat Hunting☆32Updated 6 years ago
- automate your MISP installs☆68Updated 4 years ago
- Home to the ActorTrackr source code☆29Updated 7 years ago
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆63Updated last year
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆45Updated 3 years ago
- Hunting IOCs all day every day...☆86Updated last year
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆78Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago