Projects in Awesome Lists by MISP
A curated list of projects in awesome lists by MISP .
https://github.com/misp/misp
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cti cybersecurity fraud-detection fraud-management fraud-prevention information-exchange information-security information-sharing intelligence malware-analysis misp security stix threat-analysis threat-hunting threat-intel threat-intelligence threat-intelligence-platform threat-sharing threatintel
Last synced: 12 May 2025
https://github.com/MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cti cybersecurity fraud-detection fraud-management fraud-prevention information-exchange information-security information-sharing intelligence malware-analysis misp security stix threat-analysis threat-hunting threat-intel threat-intelligence threat-intelligence-platform threat-sharing threatintel
Last synced: 30 Mar 2025
https://github.com/MISP/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
adversaries adversary-groups attack-patternon classification information-exchange malware misp misp-galaxy mitre-adversarial-tactics stix threat-actors threat-hunting threat-intelligence
Last synced: 29 Mar 2026
https://github.com/misp/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
dfir false-positive misp misp-warninglists network-forensics threat-intelligence
Last synced: 15 May 2025
https://github.com/MISP/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
dfir false-positive misp misp-warninglists network-forensics threat-intelligence
Last synced: 15 Apr 2025
https://github.com/misp/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
adversaries adversary-groups attack-patternon classification information-exchange malware misp misp-galaxy mitre-adversarial-tactics stix threat-actors threat-hunting threat-intelligence
Last synced: 08 May 2025
https://github.com/misp/pymisp
Python library using the MISP Rest API
api api-client misp threat-sharing threatintel
Last synced: 16 Feb 2026
https://github.com/misp/misp-training
MISP trainings, threat intel and information sharing training materials with source code
information-exchange information-sharing misp-training osint threat-intelligence threatintel
Last synced: 16 May 2025
https://github.com/MISP/misp-training
MISP trainings, threat intel and information sharing training materials with source code
information-exchange information-sharing misp-training osint threat-intelligence threatintel
Last synced: 12 Mar 2025
https://github.com/misp/misp-modules
Modules for expansion services, enrichment, import and export in MISP and other tools.
cti domaintools enrichment expansion misp misp-modules osint passive-dns passivetotal threat-intelligence
Last synced: 08 May 2025
https://github.com/misp/misp-taxonomies
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
adversary classification enisa-threat-taxonomy government-classification-markings incident incident-classification incident-response incident-taxonomy information-exchange machine-tags malware misp-taxonomies misp-taxonomy security taxonomy
Last synced: 08 May 2025
https://github.com/misp/misp-book
User guide of MISP
documentation information-exchange information-sharing misp misp-book
Last synced: 08 May 2025
https://github.com/MISP/misp-book
User guide of MISP
documentation information-exchange information-sharing misp misp-book
Last synced: 12 Jul 2025
https://github.com/misp/misp-dashboard
A live dashboard for a real-time overview of threat intelligence from MISP instances
cyber-security cybersecurity dashboard misp threat-intelligence threatintel
Last synced: 08 May 2025
https://github.com/misp/misp-playbooks
MISP Playbooks
cti cyber-security misp misp-playbooks playbooks threat-intelligence
Last synced: 08 May 2025
https://github.com/misp/misp-maltego
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
analysis attack graph maltego misp misp-maltego mitre-attack pivoting threat-intel threat-intelligence transform visualisation
Last synced: 06 Apr 2025
https://github.com/misp/misp-objects
Definition, description and relationship types of MISP objects
information-exchange information-sharing misp misp-objects
Last synced: 08 May 2025
https://github.com/misp/misp-taxii-server
An OpenTAXII Configuration for MISP
information-exchange information-sharing misp stix taxii-hooks taxii-server
Last synced: 08 May 2025
https://github.com/misp/misp-stix-converter
A utility repo to assist with converting between MISP and STIX formats
conversion misp stix threat-sharing
Last synced: 09 Sep 2025
https://github.com/misp/mail_to_misp
Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
misp misp-api threat-hunting threat-intelligence threatintel
Last synced: 08 May 2025
https://github.com/misp/misp-stix
MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
cyberthreatintelligence misp stix stix2
Last synced: 08 May 2025
https://github.com/MISP/misp-rfc
Specifications used in the MISP project including MISP core format
information-exchange internet-draft json-format misp misp-format misp-taxonomy protocol standard threat-sharing
Last synced: 11 May 2025
https://github.com/misp/threat-actor-intelligence-server
A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the known threat actors.
misp misp-galaxy threat-actors threat-intelligence
Last synced: 13 Sep 2025
https://github.com/misp/misp-wireshark
Lua plugin to extract data from Wireshark and convert it into MISP format
dfir misp misp-format network-forensic threat-intelligence wireshark wireshark-plugin
Last synced: 15 Jun 2025
https://github.com/misp/misp-rfc
Specifications used in the MISP project including MISP core format
information-exchange internet-draft json-format misp misp-format misp-taxonomy protocol standard threat-sharing
Last synced: 08 May 2025
https://github.com/misp/best-practices-in-threat-intelligence
Best practices in threat intelligence
information-sharing misp threat-intelligence threat-sharing threatintel
Last synced: 26 Oct 2025
https://github.com/misp/misp-vagrant
Deploy MISP Project software with Vagrant.
deployment misp vagrant virtual-machine
Last synced: 08 May 2025
https://github.com/misp/misp-compliance
Legal, procedural and policies document templates for operating MISP and information sharing communities
cybersecurity gdpr information-exchange information-sharing legal misp
Last synced: 23 Jan 2026
https://github.com/misp/intelligence-icons
intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.
icons intelligence misp threat-intelligence
Last synced: 08 May 2025
https://github.com/misp/pymispwarninglists
Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
Last synced: 08 May 2025
https://github.com/misp/misp-training-lea
Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
Last synced: 31 Jan 2026
https://github.com/misp/skillaegis
SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in best practices for information management and protective tools. Its gamification system makes learning engaging, ensuring users acquire essential technical skills and adhere to industry standards.
Last synced: 21 Aug 2025
https://github.com/misp/misp-packer
Build Automated Machine Images for MISP
Last synced: 08 May 2025
https://github.com/misp/pytaxonomies
Python module to use the MISP Taxonomies
information-security machine-tags misp-taxonomies misp-taxonomy pythonic taxonomies
Last synced: 11 Jul 2025
https://github.com/misp/mispego
Maltego Transform to put entities into MISP events
Last synced: 08 May 2025
https://github.com/MISP/MISPego
Maltego Transform to put entities into MISP events
Last synced: 20 Apr 2025
https://github.com/misp/misp-graph
A tool to convert MISP XML files (events and attributes) into graphs
Last synced: 08 May 2025
https://github.com/misp/misp-workbench
Built for the frontlines of cyber defense, our next-generation MISP empowers edge deployments and threat hunters with fast, lightweight, and actionable intelligence, anytime, anywhere.
misp threat-hunting threat-intelligence
Last synced: 13 Apr 2026
https://github.com/misp/pymispgalaxies
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
Last synced: 11 Sep 2025
https://github.com/misp/misp-takedown
A curses-style interface for automatic takedown notification based on MISP events.
abuse-detection information-sharing misp misp-api threat-intelligence threat-sharing
Last synced: 08 May 2025
https://github.com/misp/misp-airgap
Scripts to deploy and update MISP in air-gapped environments
air-gapped classified intelligence-community misp threat-intelligence
Last synced: 22 Jul 2025
https://github.com/misp/misp-sighting-server
MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indicators) in a space efficient way.
cti information-security misp sighting sightings threat-intelligence
Last synced: 06 Sep 2025
https://github.com/misp/misp-grafana
A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
cybersecurity dashboard grafana grafana-dashboard influxdb metrics misp threat-intelligence
Last synced: 26 Feb 2026
https://github.com/misp/misp-guard
misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based on a set of customizable block rules.
air-gapped misp misp-api misp-guard
Last synced: 28 Jul 2025
https://github.com/misp/misp-privacy-aware-exchange
A privacy-aware exchange module to securely and privately share your indicators
information-exchange misp privacy
Last synced: 08 May 2025
https://github.com/misp/data-processing
Scripts to process big chunks of data from MISP and do in depth correlations on samples.
Last synced: 05 Oct 2025
https://github.com/misp/misp-workflow-blueprints
Library of blueprints usable in MISP Workflows
misp threat-intelligence threatintel workflow
Last synced: 08 May 2025
https://github.com/misp/evtx-toolkit
Tool to read EVTX files including SYSMON and convert to JSON, MISP Objects and Graph stream
Last synced: 08 May 2025
https://github.com/misp/cexf
Common Exercise Format - CEXF
cyber-range cybersecurity exercise misp
Last synced: 01 Jul 2025
https://github.com/misp/threat-intelligence-browser
A browser for the threat intelligence knowledge base of the MISP project galaxies
Last synced: 17 Mar 2026
https://github.com/misp/misp-decaying-models
MISP decaying models
dfir misp network-security threat-analysis threat-intelligence threatintel
Last synced: 08 May 2025
https://github.com/misp/misp-bump
Simple and secure synchronisation of MISP instances with mobile phones
api-client misp misp-api misp-synchronisation
Last synced: 08 May 2025
https://github.com/misp/dockerized_training_environment
A training environment, with docker.
Last synced: 08 May 2025
https://github.com/misp/misp-opendata
Tool to submit / delete data from MISP to opendata portal
Last synced: 15 Aug 2025
https://github.com/misp/misp-noticelist
Notice lists to inform users of MISP about legal or technical implication for some attributes, categories and objects
gdpr legal misp privacy threat-intelligence
Last synced: 24 Jan 2026
https://github.com/misp/misp-expansion
MISP expansion - a browser extension (Firefox and Chrome) to lookup on MISP
Last synced: 08 May 2025
https://github.com/misp/misp-bloomfilter
A tool to create bloom filters from MISP records to share IOCs with others without breaking confidentiality.
Last synced: 24 Jul 2025
https://github.com/misp/misp-darwin
MISP darwin is a model and tools to automatically translate in natural language technical or structured information from MISP
Last synced: 08 May 2025
https://github.com/misp/misp-global-search
A global search of all MISP galaxy, objects and taxonomy.
Last synced: 08 Oct 2025
https://github.com/misp/skillaegis-dashboard
SkillAegis-Dashboard is a platform to run a training session and visualize the progress of participants in real-time. Part of SkillAegis.
Last synced: 15 Sep 2025
https://github.com/misp/pypraware
Python Privacy Aware (pypraware) module containing script for misp-privacy-aware-exchange
information-sharing privacy-aware
Last synced: 03 Oct 2025
https://github.com/misp/misp-sighting-tools
Tools to support sighting from various sources (e.g. network pcap) to sight attributes in MISP instances
misp-sighting network-pcap sight-attributes
Last synced: 08 May 2025
https://github.com/misp/luamisp
Lua Library to create and manipulate MISP entities
Last synced: 08 May 2025
https://github.com/misp/misp-usage-statistics
MISP usage statistics using bokeh (as a static webpage)
misp threat-intelligence-platform
Last synced: 16 Jun 2025
https://github.com/misp/misp-monitoring
Tools and documentation related to MISP instance monitoring in production/corporate environments
Last synced: 08 May 2025
https://github.com/misp/pdf_fonts
PDF Fonts used by PyMISP PDFtools export to support internalization
Last synced: 21 Jan 2026
https://github.com/misp/skillaegis-editor
SkillAegis-Editor is a platform to design exercise scenarios, enhancing skills in applications like MISP and training users in best practices for information management and protective tools. The Editor allows you to create scenarios under the Common Exercise Format (CEXF) that can be used by other application such as SkillAegis Dashboard.
Last synced: 08 May 2025
https://github.com/misp/misp_dockerized_testing
Test MISP instances using a dockerized infrastructure
Last synced: 08 May 2025
https://github.com/misp/pymispobjecttemplates
Python API to create and update MISP Object templates
Last synced: 08 May 2025
https://github.com/misp/misp-stix-tests
STIX files for testing misp-stix and various libraries
Last synced: 23 Jan 2026
https://github.com/misp/cake-resque
CakeResque is a CakePHP plugin for Resque, a library for creating background jobs that can be processed offline later.
Last synced: 08 May 2025