Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/thehive-project/cortex-analyzers

Cortex Analyzers Repository
https://github.com/thehive-project/cortex-analyzers

analyzer cortex cyber-threat-intelligence dfir digital-forensics enrichment free free-software incident-response ioc json observable open-source python thehive

Last synced: 5 days ago
JSON representation

Cortex Analyzers Repository

Host: GitHub
URL: https://github.com/thehive-project/cortex-analyzers
Owner: TheHive-Project
License: agpl-3.0
Created: 2017-01-10T13:23:10.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2024-12-26T08:44:19.000Z (27 days ago)
Last Synced: 2025-01-10T09:02:29.747Z (12 days ago)
Topics: analyzer, cortex, cyber-threat-intelligence, dfir, digital-forensics, enrichment, free, free-software, incident-response, ioc, json, observable, open-source, python, thehive
Language: Python
Homepage: https://TheHive-Project.github.io/Cortex-Analyzers/
Size: 197 MB
Stars: 437
Watchers: 48
Forks: 379
Open Issues: 181
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
- Code of conduct: code_of_conduct.md
- Security: SECURITY.md
- Authors: AUTHORS

Awesome Lists containing this project

README

        The following repository is used by [TheHive Project](https://thehive-project.org)

to develop and store [Cortex](https://github.com/TheHive-Project/Cortex/blob/master/README.md)

analyzers & responders.

![](images/cortex-ui.png)

Analyzers can be written in any programming language supported by Linux such 

as Python, Ruby, Perl, etc. Refer to the [How to Write and Submit an Analyzer](https://thehive-project.github.io/Cortex-Analyzers/dev_guides/how-to-create-an-analyzer/)

page for details on how to write and submit one.

To configure analyzers and responders, please refer to the detailed  [documentation](https://thehive-project.github.io/Cortex-Analyzers/).

# License

**Unless specified otherwise**, analyzers are released under the [AGPL](https://github.com/TheHive-Project/Cortex-analyzers/blob/master/LICENSE) (Affero General Public License).

If an analyzer is released by its author under a different license, the subfolder corresponding to it will contain a *LICENSE* file.

# Updates

Information, news and updates are regularly posted on [TheHive Project Twitter account](https://twitter.com/thehive_project), [StrangeBee Twitter account](https://twitter.com/strangebee) and on [the blog](https://blog.strangebee.com/).

# Contributing

We welcome your **[contributions for new analyzers](https://thehive-project.github.io/Cortex-Analyzers/dev_guides/how-to-create-an-analyzer/)**

that can take away the load off overworked fellow analysts or improvements to existing ones. Please feel free to fork the code, play with it, make some patches and send us pull requests using [issues](https://github.com/TheHive-Project/Cortex-analyzers/issues).

**Important**: To make it easy for every one, please send **one** pull request per analyzer. It will help us reviewing the code, and merging as soon as feasible.

We do have a [Code of conduct](code_of_conduct.md). Make sure to check it out before contributing.

# Security

See the [dedicated page](./SECURITY.md).

# Support

if you encounter an issue with an analyzer or would like to request a new one or an improvement to an existing analyzer, please open an issue on the [analyzers' dedicated GitHub repository](https://github.com/TheHive-Project/Cortex-Analyzers/issues/new).

Alternatively, if you need to contact the project team, send an email to .

# Community Discussions

We have set up a Google forum at . To request access, you need a Google account. You may create one [using a Gmail address](https://accounts.google.com/SignUp?hl=en) or [without one](https://accounts.google.com/SignUpWithoutGmail?hl=en).

Alternatively, you can join the community on [Discord](https://chat.thehive-project.org).

# Website