stricaud / sightingdbLinks
SightingDB is a database for Sightings
☆22Updated last year
Alternatives and similar repositories for sightingdb
Users that are interested in sightingdb are comparing it to the libraries listed below
Sorting:
- A collection of typical false positive indicators☆55Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 3 years ago
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Open source training materials for law-enforcement and organisations interested in DFIR.☆57Updated this week
- Threat Box Assessment Tool☆19Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Recon Hunt Queries☆77Updated 4 years ago
- Scripts for accessing and transforming cyber threat intelligence☆26Updated 9 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated 2 years ago
- pocket guide for core threat hunting concepts☆23Updated 5 years ago
- Powershell Functions to interact with TheHive-Project☆10Updated 5 years ago
- FRAC and RIFT☆17Updated 6 years ago
- Simple yara rule manager☆66Updated 2 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- ☆15Updated 4 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy☆19Updated 6 months ago
- Creating a Feed of MISP Events from ThreatFox (by abuse.ch)☆19Updated 3 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 5 years ago
- ☆33Updated 5 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 6 years ago
- Use DNS to hunt for threats including DGAs☆15Updated 9 years ago
- A Splunk Technology Add-on to forward filtered ETW events.☆30Updated 4 years ago
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 4 months ago
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆21Updated 6 years ago
- Web based Manager for Yara Rules☆57Updated 5 years ago
- Site for IWS book content☆18Updated 6 years ago
- CSIRT Jump Bag☆26Updated last year
- Tools to search through massive amounts of data☆21Updated 6 months ago