veeral-patel / incidents
Please use https://github.com/veeral-patel/true-positive instead
☆66Updated 2 years ago
Alternatives and similar repositories for incidents:
Users that are interested in incidents are comparing it to the libraries listed below
- automate your MISP installs☆66Updated 4 years ago
- Build your own threat hunting maturity model☆11Updated 7 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communities☆66Updated last year
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Updated 4 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- ☆50Updated 6 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Expert Investigation Guides☆51Updated 3 years ago
- References for FIRST CTI 2019 Symposium presentation☆23Updated 5 years ago
- A bunch of scripts I use to work with urlscan.io☆33Updated 5 years ago
- A toolkit for Security Researchers☆126Updated 5 years ago
- For storing of the volumes☆4Updated 5 years ago
- Providing timelines based on OSINT Reports☆32Updated last year
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆106Updated 7 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Bot to create MISP events from data in Slack☆17Updated last year
- Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.☆21Updated 6 years ago
- A YARA Rule Performance Measurement Tool☆58Updated last year
- SMTP server / sinkhole for collecting spam☆44Updated 6 years ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆37Updated 2 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- ☆12Updated 5 years ago
- Stop searching for sample hashes on 10 different sites.☆66Updated 6 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago