opendns / investigate-examplesLinks
Coding examples for the OpenDNS Investigate API
☆24Updated 5 years ago
Alternatives and similar repositories for investigate-examples
Users that are interested in investigate-examples are comparing it to the libraries listed below
Sorting:
- ☆55Updated 3 years ago
- Python module to interface with the OpenDNS Investigate API☆63Updated 3 years ago
- A simple Docker container that serves the MITRE ATT&CK Navigator web app☆27Updated 2 years ago
- ☆34Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Expert Investigation Guides☆50Updated 4 years ago
- Sysmon Splunk App☆47Updated 7 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆69Updated 4 years ago
- automate your MISP installs☆68Updated 5 years ago
- MineMeld nodes for MISP☆19Updated last year
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆43Updated 8 years ago
- ☆55Updated 4 years ago
- misp-cloud - Cloud-ready images of MISP☆73Updated 3 years ago
- Salt States for Configuring the SIFT Workstation☆105Updated 2 weeks ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated last week
- QRadar Export the rule set for printing☆22Updated 7 years ago
- ☆49Updated 5 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- A collaborative CISSP notes card☆39Updated 9 years ago
- the fastest way to consume threat intelligence.☆31Updated 2 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆55Updated 4 years ago
- scripts to configure the Splunk Universal Forwarder in a locked down state☆40Updated 6 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago