43 results found Sort:

MISP
MISP MISP
1.3k
5.0k
agpl-3.0
274
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cti misp stix security threatintel intelligence threat-intel cybersecurity threat-hunting threat-sharing fraud-detection threat-analysis fraud-management fraud-prevention malware-analysis information-sharing threat-intelligence information-exchange information-security threat-intelligence-platform
Created 2013-02-07
25,717 commits to 2.4 branch, last one 9 days ago
TheHive-Project
TheHive TheHive-Project
601
3.2k
agpl-3.0
168
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
api dfir free iocs misp rest scala agplv3 cortex thehive analyzer platform open-source orchestration investigations digital-forensics incident-response security-incidents incident-management incident-response-tooling
Created 2016-11-03
2,751 commits to main branch, last one about a year ago
eset
malware-ioc eset
255
1.5k
bsd-2-clause
213
Indicators of Compromises (IOC) of our various investigations
ioc misp yara malware
Created 2014-03-13
218 commits to master branch, last one 16 days ago
emalderson
ThePhish emalderson
170
1.1k
agpl-3.0
20
ThePhish: an automated phishing email analysis tool
free misp email attack python script webapp malware thehive phishing thehive4 detection thehive4py cyberdefense cybersecurity digital-forensics incident-response phishing-detection threat-intelligence indicators-of-compromise
Created 2021-09-27
14 commits to master branch, last one about a year ago
Bert-JanP
Hunting-Queries-Detection-Rules Bert-JanP
188
1.0k
bsd-3-clause
51
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
kql mde mdi dfir misp azure infosec blueteam security sentinel zero-day cybersecurity threat-hunting defender-for-endpoint vulnerability-management
Created 2022-05-30
302 commits to main branch, last one a day ago
thalesgroup-cert
Watcher thalesgroup-cert
120
807
agpl-3.0
41
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
misp nltk osint django webapp reactjs thehive watcher phishing security certstream monitoring rss-bridge osint-python cybersecurity threat-hunting threat-detection incident-response threat-intelligence certificate-transparency
Created 2020-09-01
263 commits to master branch, last one 8 months ago
InQuest
ThreatIngestor InQuest
132
795
gpl-2.0
41
Extract and aggregate threat intelligence.
ioc dfir misp soar yara osint threatintel threat-feeds security-tools threat-hunting threat-sharing fraud-detection threat-analysis malware-research threat-intelligence intelligence-gathering indicators-of-compromise threat-intelligence-platform
Created 2017-08-31
596 commits to master branch, last one 7 months ago
MISP
misp-galaxy MISP
255
503
other
47
Clusters and elements to attach to MISP events or attributes (like threat actors)
misp stix malware adversaries misp-galaxy threat-actors classification threat-hunting adversary-groups attack-patternon threat-intelligence information-exchange mitre-adversarial-tactics
Created 2016-02-27
3,844 commits to main branch, last one 12 hours ago
MISP
misp-warninglists MISP
165
490
unknown
33
Warning lists to inform users of MISP about potential false-positives or other information in indicators
dfir misp false-positive misp-warninglists network-forensics threat-intelligence
Created 2016-04-19
886 commits to main branch, last one 4 days ago
Bert-JanP
Open-Source-Threat-Intel-Feeds Bert-JanP
55
476
bsd-3-clause
12
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
c2 ioc misp iocfeed malware phishing threat-hunting threat-intelligence
Created 2022-06-08
67 commits to main branch, last one 10 days ago
MISP
PyMISP MISP
277
427
other
48
Python library using the MISP Rest API
api misp api-client threatintel threat-sharing
Created 2014-04-16
3,106 commits to main branch, last one 9 days ago
V1D1AN
S1EM V1D1AN
77
392
mit
18
This project is a SIEM with SIRP and Threat Intel, all in one.
n8n misp mwdb yara zeek sigma arkime cortex docker kibana malware opencti thehive filebeat logstash suricata zircolite velociraptor elasticsearch
Created 2021-05-11
636 commits to master branch, last one 4 months ago
TheHive-Project
TheHiveDocs TheHive-Project
284
391
agpl-3.0
48
Documentation of TheHive
api dfir free iocs misp rest cortex analyst thehive analyzer platform open-source documentation free-software thehive-project digital-forensics incident-response security-incidents administration-guide
This repository has been archived (exclude archived)
Created 2017-05-16
517 commits to master branch, last one 8 months ago
OpenCTI-Platform
connectors OpenCTI-Platform
359
335
apache-2.0
16
OpenCTI Connectors
cti misp mitre-attack cybersecurity threat-intelligence
Created 2019-06-18
2,435 commits to master branch, last one 2 days ago
MISP
misp-modules MISP
232
329
agpl-3.0
44
Modules for expansion services, enrichment, import and export in MISP and other tools.
cti misp osint expansion enrichment domaintools passive-dns misp-modules passivetotal threat-intelligence
Created 2016-02-17
2,395 commits to main branch, last one 3 days ago
MISP
x_old_misp_docker MISP
174
284
unknown
26
MISP Docker (XME edition)
misp misp-docker
Created 2018-06-01
237 commits to master branch, last one 5 months ago
tenzir
threatbus tenzir
16
256
bsd-3-clause
26
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
cif ids cif3 misp zeek opencti sightings threat-bus threatintel threat-hunting opencti-connector threat-intelligence threat-intelligence-data
This repository has been archived (exclude archived)
Created 2019-01-31
857 commits to main branch, last one 2 years ago
MISP
misp-book MISP
103
244
unknown
37
User guide of MISP
misp misp-book documentation information-sharing information-exchange
Created 2015-10-06
836 commits to main branch, last one 8 months ago
coolacid
docker-misp coolacid
95
226
gpl-3.0
18
A (nearly) production ready Dockered MISP
misp docker security security-tools threat-sharing threat-intelligence
Created 2019-11-25
255 commits to master branch, last one 4 months ago
mthcht
awesome-lists mthcht
28
221
unknown
8
Security lists for SOC detections
cti ioc soc list misp awesome redteam blueteam keywords security hacktools purpleteam open-source awesome-list awesome-lists offensive-security
Created 2022-12-11
647 commits to main branch, last one 23 hours ago
MISP
misp-dashboard MISP
65
190
agpl-3.0
36
A live dashboard for a real-time overview of threat intelligence from MISP instances
misp dashboard threatintel cybersecurity cyber-security threat-intelligence
Created 2017-10-25
607 commits to main branch, last one about a year ago
harvard-itsecurity
docker-misp harvard-itsecurity
44
174
bsd-3-clause
12
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
misp malware security dockerhub threat-sharing malware-analysis threat-intelligence information-security
Created 2016-09-27
59 commits to master branch, last one 4 years ago
pe3zx
mthc pe3zx
38
169
mit
12
All-in-one bundle of MISP, TheHive and Cortex
dfir misp cortex thehive ioc-framework threat-hunting thehive-project incident-response incident-management threat-intelligence
Created 2019-07-15
40 commits to master branch, last one about a year ago
MISP
MISP-maltego MISP
46
164
agpl-3.0
26
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
misp graph attack maltego analysis pivoting transform misp-maltego mitre-attack threat-intel visualisation threat-intelligence
Created 2016-02-25
129 commits to master branch, last one about a year ago
MISP
misp-playbooks MISP
15
154
bsd-2-clause
10
MISP Playbooks
cti misp playbooks cyber-security misp-playbooks threat-intelligence
Created 2023-01-30
39 commits to main branch, last one 2 months ago
davidonzo
Threat-Intel davidonzo
14
140
mit
8
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
misp stix cybox osint stix2 taxii taxii2 misp-feed threat-intel cybersecurity threat-intelligence malware-analisys-lab incident-response-service
Created 2019-05-09
9,789 commits to master branch, last one a day ago
tylabs
dovehawk tylabs
24
122
mit
9
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
misp zeek bro-ids zeek-ids misp-sightings threat-hunting threat-intelligence
Created 2018-08-24
57 commits to master branch, last one 2 years ago
MISP
misp-objects MISP
117
91
other
28
Definition, description and relationship types of MISP objects
misp misp-objects information-sharing information-exchange
Created 2016-02-08
1,850 commits to main branch, last one 5 days ago
cerebrate-project
cerebrate cerebrate-project
16
79
agpl-3.0
16
Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools.
misp cerebrate cerebrate-project information-sharing security-automation
Created 2020-01-26
1,706 commits to main branch, last one 16 days ago
MISP
MISP-Taxii-Server MISP
30
79
bsd-3-clause
17
An OpenTAXII Configuration for MISP
misp stix taxii-hooks taxii-server information-sharing information-exchange
Created 2016-11-18
166 commits to master branch, last one about a year ago