stratosphereips / AIPLinks
The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
☆30Updated 6 months ago
Alternatives and similar repositories for AIP
Users that are interested in AIP are comparing it to the libraries listed below
Sorting:
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆72Updated 10 months ago
- the IoT and OT (Operational Technology) Honeypot☆25Updated last year
- Website crawler with YARA detection☆88Updated last year
- The FASTEST way to consume threat intel.☆68Updated 2 years ago
- Suricata rule and intel index☆30Updated 2 months ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- Robust Python SDK and Command Line Client for interacting with IntelOwl's API.☆68Updated 2 months ago
- Definition, description and relationship types of MISP objects☆100Updated last week
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆55Updated 11 months ago
- Converting data from services like Censys and Shodan to a common data model☆49Updated 8 months ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- 🤖 Daily updated translation maps for T-Pot☆22Updated last year
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- Best practices in threat intelligence☆47Updated 2 years ago
- A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB☆18Updated last year
- Threat Intel Platform for T-POTs☆149Updated this week
- The Fastest way to consume Threat Intel☆25Updated 3 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- automate your MISP installs☆68Updated 4 years ago
- The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…☆110Updated last year
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆39Updated last year
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Cyber Threat Intelligence Feeds☆96Updated 8 years ago
- Honeyscanner: A vulnerability analyzer for honeypots☆41Updated 9 months ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆24Updated 8 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Awesome Cyber-Security Data-sets Collection☆19Updated 6 years ago