tenzir / threatbusLinks
π Threat Bus β A threat intelligence dissemination layer for open-source security tools.
β266Updated 2 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below
Sorting:
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)β189Updated 4 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsβ122Updated 4 years ago
- Import specific data sources into the Sigma generic and open signature format.β78Updated 3 years ago
- Log Entry to Sigma Rule Converterβ108Updated 3 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other seβ¦β91Updated last week
- A live dashboard for a real-time overview of threat intelligence from MISP instancesβ204Updated 2 years ago
- Threat Alert Logic Repositoryβ92Updated 6 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharingβ105Updated last year
- All-in-one bundle of MISP, TheHive and Cortexβ169Updated 3 years ago
- Automatically create YARA rules from malicious documents.β211Updated 3 years ago
- Automated Use Case Testingβ170Updated 7 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures β‘οΈ MITRE ATT&CK Navigatorβ89Updated 2 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stackβ¦β93Updated 3 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)β107Updated last year
- A community event for security researchers to share their favorite notebooksβ109Updated last year
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platformβ149Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.β111Updated 5 years ago
- The FASTEST way to consume threat intel.β69Updated 2 years ago
- A curated list of awesome things related to TheHive & Cortexβ182Updated 4 years ago
- SIEGMA - Transform Sigma rules into SIEM consumablesβ157Updated 8 months ago
- Sigma Detection Rule Repositoryβ91Updated 5 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.β158Updated 7 months ago
- A Python library to help with some common threat hunting data analysis operationsβ143Updated 2 years ago
- A collection of notebooks built for defensive and offensive operations.β77Updated 5 years ago
- A website and framework for testing NIDS detectionβ57Updated 4 years ago
- Mapping NSM rules to MITRE ATT&CKβ72Updated 5 years ago
- Collecting & Hunting for IOCs with gusto and styleβ241Updated 4 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2β123Updated 4 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a matβ¦β62Updated last year
- Cisco Orbital - Osquery queries by Talosβ135Updated last year