tenzir / threatbusLinks
π Threat Bus β A threat intelligence dissemination layer for open-source security tools.
β267Updated 2 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below
Sorting:
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)β189Updated 4 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsβ122Updated 4 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures β‘οΈ MITRE ATT&CK Navigatorβ90Updated 3 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other seβ¦β91Updated last month
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.β111Updated 5 years ago
- All-in-one bundle of MISP, TheHive and Cortexβ169Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stackβ¦β94Updated 3 years ago
- A live dashboard for a real-time overview of threat intelligence from MISP instancesβ205Updated 2 years ago
- Log Entry to Sigma Rule Converterβ108Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.β79Updated 3 years ago
- Threat Alert Logic Repositoryβ92Updated 6 years ago
- A website and framework for testing NIDS detectionβ57Updated 4 years ago
- Automated Use Case Testingβ170Updated 7 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharingβ105Updated last year
- A curated list of awesome things related to TheHive & Cortexβ182Updated 4 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platformβ149Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CKβ73Updated 5 years ago
- The FASTEST way to consume threat intel.β69Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and styleβ241Updated 4 years ago
- Cisco Orbital - Osquery queries by Talosβ135Updated last year
- β78Updated 5 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2β124Updated 5 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)β103Updated 5 months ago
- A Splunk app to use MISP in backgroundβ113Updated last month
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a matβ¦β62Updated 2 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platformβ248Updated this week
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platformβ71Updated 2 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)β107Updated last year
- A community event for security researchers to share their favorite notebooksβ109Updated last year
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.β159Updated 8 months ago