Misp TrainingMISP trainings, threat intel and information sharing training materials with source code
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Sweetie DataThis repo contains logstash of various honeypots
DnsmorphDomain name permutation engine written in Go
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Misp DashboardA dashboard for a real-time overview of threat intelligence from MISP instances
ForagerMultithreaded threat Intelligence gathering built with Python3
Threatbus🚌 The missing link to connect open-source threat intelligence tools.
Graylog Plugin ThreatintelGraylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
Chatterinternet monitoring osint telegram bot for windows
OpentaxiiTAXII server implementation in Python from EclecticIQ
PatrowlhearsPatrowlHears - Vulnerability Intelligence Center / Exploits
Malware FeedBringing you the best of the worst files on the Internet.
CabbyTAXII client implementation from EclecticIQ
Vulnerability Data ArchiveWith the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools
YetiYour Everyday Threat Intelligence
Otx mispImports Alienvault OTX pulses to a MISP instance
VfeedThe Correlated CVE Vulnerability And Threat Intelligence Database API
HarpoonCLI tool for open source and threat intelligence
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
CowrieCowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Sysmon ConfigSysmon configuration file template with default high-quality event tracing
ThreatpinchlookupDocumentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
StalkphishStalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
PymispPython library using the MISP Rest API
Threat-Intel-Slack-BotInteractive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
iocingestorAn extendable tool to extract and aggregate IoCs from threat feeds
pybinaryedgePython 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/
rstthreatsAggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.
OSINT-BrazucaRepositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
IronNetTRThreat research and reporting from IronNet's Threat Research Teams
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
pyetiPython bindings for Yeti's API
GDPatrolA Lambda-powered Security Orchestration framework for AWS GuardDuty
MimirOSINT Threat Intel Interface - CLI for HoneyDB
ArgosThis script will automatically set up an OSINT workstation starting from a Ubuntu OS.
sqhunterA simple threat hunting tool based on osquery, Salt Open and Cymon API
awesome-intelligence-writingAwesome collection of great and useful resources concerning intelligence writing such as manuals/guides, standards, books, and articles
MurMurHashThis little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
cif-v5The FASTEST way to consume threat intel.
ioc-fangerFang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
mail to mispConnect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.