opencybersecurityalliance / firepitLinks
Firepit - STIX Columnar Storage
☆17Updated last year
Alternatives and similar repositories for firepit
Users that are interested in firepit are comparing it to the libraries listed below
Sorting:
- CyCAT.org API back-end server including crawlers☆29Updated 3 years ago
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…☆23Updated 2 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Updated 3 years ago
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆56Updated this week
- Specifications used in the MISP project including MISP core format☆53Updated last month
- Kestrel Jupyter Notebook Kernel☆10Updated 2 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 3 years ago
- Cisco Orbital - Osquery queries by Talos☆136Updated last year
- OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…☆43Updated last year
- OCA-wide documentation shared by all sub-projects and repositories☆33Updated last year
- Notes for High Availability MISP in AWS☆19Updated 6 years ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆17Updated 5 years ago
- Automatic detection engineering technical state compliance☆55Updated last year
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆36Updated 2 years ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50Updated 3 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆35Updated last month
- Import specific data sources into the Sigma generic and open signature format.☆79Updated 3 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Updated 3 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆14Updated 2 years ago
- OSSEM Common Data Model☆56Updated 3 years ago
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 3 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Updated 3 years ago
- OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices☆60Updated 3 weeks ago
- ☆51Updated last month
- Transform EQL detection rules to VQL artifacts☆12Updated 4 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 4 years ago
- ☆24Updated 3 years ago