Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/MISP/misp-rfc
Specifications used in the MISP project including MISP core format
information-exchange internet-draft json-format misp misp-format misp-taxonomy protocol standard threat-sharing
Last synced: 11 Jul 2024
https://github.com/InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
dfir fraud-detection indicators-of-compromise intelligence-gathering ioc malware-research misp osint security-tools soar threat-analysis threat-feeds threat-hunting threat-intelligence threat-intelligence-platform threat-sharing threatintel yara
Last synced: 11 Jul 2024
https://github.com/cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
attacker cowrie cowrie-ssh deception decoy honeypot kippo scp security sftp ssh telnet telnet-honeypot threat-analysis threat-sharing threatintel
Last synced: 04 Jul 2024
https://github.com/coolacid/docker-misp
A (nearly) production ready Dockered MISP
docker misp security security-tools threat-intelligence threat-sharing
Last synced: 02 Jun 2024
https://github.com/csirtgadgets/bearded-avenger
CIF v3 -- the fastest way to consume threat intelligence
cif cifv3 security threat-hunting threat-sharing threatintel
Last synced: 30 May 2024
https://github.com/ion-storm/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
dfir digitalforensics forensic-analysis forensicartifacts forensics graylog graylog-plugin humio logging mitre-attack netsec siem sigma-rules sysinternals sysmon threat-analysis threat-hunting threat-intelligence threat-sharing threatintel
Last synced: 17 May 2024
https://github.com/jipegit/dfir-ioc-ut
DFIR IoC Unit Testing
cybersecurity dfir ioc threat-hunting threat-sharing unit-testing
Last synced: 07 May 2024
https://github.com/Viralmaniar/DDWPasteRecon
DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, password hashes. It also allow member of SOC & Blue Team to gain situational awareness of the organisation's web exposure on the pastesites. It Utilises Google's indexing of pastesites to gain targeted intelligence of the organisation. Blue & SOC teams can collect and analyse data from these indexed pastesites to better protect against unknown threats.
attacksurface blueteam blueteaming darkweb darkweb-hacking ddw hacking-tools iocs pastesites reconnaissance redteam redteam-tools redteaming soc threat-hunting threat-intelligence threat-sharing
Last synced: 07 May 2024
https://github.com/rshipp/awesome-malware-analysis
Defund the Police.
analysis-framework automated-analysis awesome awesome-list chinese chinese-translation domain-analysis drop-ice dynamic-analysis list malware-analysis malware-collection malware-research malware-samples network-traffic static-analysis threat-intelligence threat-sharing threatintel
Last synced: 05 May 2024
https://github.com/MISP/PyMISP
Python library using the MISP Rest API
api api-client misp threat-sharing threatintel
Last synced: 27 Apr 2024
https://github.com/sapphirex00/Threat-Hunting
Personal compilation of APT malware from whitepaper releases, documents and own research
collection malware malware-analysis malware-detection malware-research threat-hunting threat-intelligence threat-modeling threat-sharing yara-rules
Last synced: 27 Apr 2024
https://github.com/yeti-platform/yeti
Your Everyday Threat Intelligence
dfir enrichment infosec intelligence threat-hunting threat-sharing threatintel
Last synced: 11 Apr 2024
https://github.com/MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cti cybersecurity fraud-detection fraud-management fraud-prevention information-exchange information-security information-sharing intelligence malware-analysis misp security stix threat-analysis threat-hunting threat-intel threat-intelligence threat-intelligence-platform threat-sharing threatintel
Last synced: 09 Apr 2024
https://github.com/InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
base64 decoding defang dfir indicators-of-compromise ioc ioc-extractor library malware-research osint threat-intelligence threat-sharing threatintel yara
Last synced: 09 Apr 2024
https://github.com/cloudtracer/ThreatPinchLookup
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
alienvault censys cert chrome-extension circl cve dfir ibm-xforce incident-response misp osint passivetotal security shodan threat-hunting threat-sharing threatintel threatminer virustotal whois
Last synced: 08 Apr 2024
https://github.com/adulau/misp-osint-collection
Collection of best practices to add OSINT into MISP and/or MISP communities
cyber-security misp osint threat-intelligence threat-sharing
Last synced: 06 Apr 2024
