tenzir / threatbusLinks
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
☆262Updated 2 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below
Sorting:
- Log Entry to Sigma Rule Converter☆108Updated 3 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 3 months ago
- Collecting & Hunting for IOCs with gusto and style☆240Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆188Updated 4 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆105Updated last year
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- All-in-one bundle of MISP, TheHive and Cortex☆169Updated 2 years ago
- Automated Use Case Testing☆167Updated 7 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Suricata rules for network anomaly detection☆164Updated 2 months ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 3 years ago
- The FASTEST way to consume threat intel.☆68Updated 2 years ago
- A curated list of awesome things related to TheHive & Cortex☆180Updated 3 years ago
- Sigma Detection Rule Repository☆88Updated 5 years ago
- Searches For Threat Hunting and Security Analytics☆241Updated 2 months ago
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated last year
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- A Splunk app to use MISP in background☆110Updated 3 weeks ago
- Converts Sigma detection rules to a Splunk alert configuration.☆111Updated 5 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆88Updated this week
- Threat Feed Aggregation, Made Easy☆168Updated 4 years ago
- ☆77Updated 4 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- ☆173Updated 11 months ago