tenzir / threatbusLinks
π Threat Bus β A threat intelligence dissemination layer for open-source security tools.
β264Updated 2 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below
Sorting:
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsβ122Updated 4 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)β189Updated 4 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other seβ¦β90Updated last month
- Threat Alert Logic Repositoryβ92Updated 6 years ago
- Import specific data sources into the Sigma generic and open signature format.β78Updated 3 years ago
- The FASTEST way to consume threat intel.β69Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.β110Updated 5 years ago
- Log Entry to Sigma Rule Converterβ109Updated 3 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures β‘οΈ MITRE ATT&CK Navigatorβ88Updated 2 years ago
- All-in-one bundle of MISP, TheHive and Cortexβ169Updated 3 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instancesβ203Updated 2 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharingβ105Updated last year
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stackβ¦β94Updated 3 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)β107Updated last year
- A curated list of awesome things related to TheHive & Cortexβ182Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.β77Updated 5 years ago
- A website and framework for testing NIDS detectionβ57Updated 4 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platformβ149Updated 3 years ago
- A community event for security researchers to share their favorite notebooksβ108Updated last year
- Automated Use Case Testingβ169Updated 7 years ago
- Mapping NSM rules to MITRE ATT&CKβ72Updated 5 years ago
- Cisco Orbital - Osquery queries by Talosβ135Updated last year
- Automatically create YARA rules from malicious documents.β212Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.β158Updated 6 months ago
- A Python library to help with some common threat hunting data analysis operationsβ143Updated 2 years ago
- The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teamsβ64Updated 5 years ago
- OSSEM Common Data Modelβ56Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumablesβ156Updated 7 months ago
- Swagger/ OpenAPI specifications for security products and servicesβ77Updated this week
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auβ¦β79Updated 4 months ago