rstcloud / rstcloud-import2mispLinks
Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
☆15Updated 2 weeks ago
Alternatives and similar repositories for rstcloud-import2misp
Users that are interested in rstcloud-import2misp are comparing it to the libraries listed below
Sorting:
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆52Updated last month
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆76Updated 2 months ago
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆54Updated 8 months ago
- ☆33Updated 7 months ago
- Turn any blog into structured threat intelligence.☆34Updated this week
- Repo for experimenting and testing MCP server builds for CTI-related research.☆26Updated last month
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 8 months ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆41Updated this week
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆26Updated 7 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 9 months ago
- ☆74Updated last week
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Updated 4 months ago
- ☆73Updated 2 weeks ago
- ☆17Updated 2 months ago
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17Updated last month
- This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team☆19Updated 8 months ago
- Living Off Security Tools☆45Updated 8 months ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆45Updated 2 months ago
- MS Graph Commands and Tools for Blue Teamers☆50Updated last year
- Convert Sigma rules to SIEM queries, directly in your browser.☆90Updated this week
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 11 months ago
- A series of python scripts to extract information from Dark Web Applications☆12Updated 3 months ago
- A simple web app to get the latest EPSS data for a CVE ID☆11Updated 3 months ago
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆41Updated 5 months ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆99Updated last week
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆34Updated 2 weeks ago
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 4 months ago
- ☆21Updated 2 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆44Updated 3 months ago
- Mapping of open-source detection rules and atomic tests.☆169Updated 5 months ago