All Projects → TheHive-Project → Cortex Analyzers

TheHive-Project / Cortex Analyzers

Licence: agpl-3.0
Cortex Analyzers Repository

Programming Languages

python
139335 projects - #7 most used programming language

Projects that are alternatives of or similar to Cortex Analyzers

Cortex
Cortex: a Powerful Observable Analysis and Active Response Engine
Stars: ✭ 676 (+174.8%)
Mutual labels:  observable, free, free-software, open-source, dfir, incident-response, digital-forensics, analyzer
Thehivedocs
Documentation of TheHive
Stars: ✭ 353 (+43.5%)
Mutual labels:  free, free-software, open-source, dfir, incident-response, digital-forensics, analyzer
Thehive4py
Python API Client for TheHive
Stars: ✭ 143 (-41.87%)
Mutual labels:  free, free-software, open-source, dfir, incident-response, digital-forensics
Thehive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Stars: ✭ 2,300 (+834.96%)
Mutual labels:  free, open-source, dfir, incident-response, digital-forensics, analyzer
Cortex4py
Python API Client for Cortex
Stars: ✭ 22 (-91.06%)
Mutual labels:  free-software, open-source, dfir, incident-response
Intelowl
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+759.35%)
Mutual labels:  observable, free-software, incident-response, ioc
Awesome Forensics
A curated list of awesome forensic analysis tools and resources
Stars: ✭ 1,775 (+621.54%)
Mutual labels:  free, open-source, dfir, digital-forensics
Hashover Next
This branch will be HashOver 2.0
Stars: ✭ 353 (+43.5%)
Mutual labels:  json, free-software, open-source
catalyst
Catalyst is an open source SOAR system that helps to automate alert handling and incident response processes
Stars: ✭ 91 (-63.01%)
Mutual labels:  incident-response, dfir, digital-forensics
Beagle
Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
Stars: ✭ 976 (+296.75%)
Mutual labels:  dfir, incident-response, digital-forensics
Avideo
Create Your Own Broadcast Network With AVideo Platform Open-Source. OAVP OVP
Stars: ✭ 1,329 (+440.24%)
Mutual labels:  free, free-software, open-source
MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
Stars: ✭ 89 (-63.82%)
Mutual labels:  incident-response, dfir, digital-forensics
Uebergame
Uebergame code repository
Stars: ✭ 90 (-63.41%)
Mutual labels:  free, free-software, open-source
Im ios
GoBelieveIO IM iOS sdk
Stars: ✭ 116 (-52.85%)
Mutual labels:  free, free-software, open-source
Kuiper
Digital Forensics Investigation Platform
Stars: ✭ 257 (+4.47%)
Mutual labels:  dfir, incident-response, digital-forensics
Hippocampe
Threat Feed Aggregation, Made Easy
Stars: ✭ 149 (-39.43%)
Mutual labels:  free, free-software, open-source
Imaginary Teleprompter
Professional grade, free software, teleprompter app.
Stars: ✭ 157 (-36.18%)
Mutual labels:  free, free-software, open-source
ThePhish
ThePhish: an automated phishing email analysis tool
Stars: ✭ 676 (+174.8%)
Mutual labels:  incident-response, free, digital-forensics
INDXRipper
Carve file metadata from NTFS index ($I30) attributes
Stars: ✭ 32 (-86.99%)
Mutual labels:  incident-response, dfir, digital-forensics
Dfirtrack
DFIRTrack - The Incident Response Tracking Application
Stars: ✭ 232 (-5.69%)
Mutual labels:  dfir, incident-response, digital-forensics

The following repository is used by TheHive Project to develop and store Cortex analyzers.

Analyzers can be written in any programming language supported by Linux such as Python, Ruby, Perl, etc. Refer to the How to Write and Submit an Analyzer page for details on how to write and submit one.

To configure analyzers, please read the Cortex Analyzer Requirements Guide.

License

Unless specified otherwise, analyzers are released under the AGPL (Affero General Public License).

If an analyzer is released by its author under a different license, the subfolder corresponding to it will contain a LICENSE file.

Updates

Information, news and updates are regularly posted on TheHive Project Twitter account and on the blog.

Contributing

We welcome your contributions for new analyzers that can take away the load off overworked fellow analysts or improvements to existing ones. Please feel free to fork the code, play with it, make some patches and send us pull requests using issues.

Important: To make it easy for every one, please send one pull request per analyzer. It will help us reviewing the code, and merging as soon as feasible.

We do have a Code of conduct. Make sure to check it out before contributing.

Support

if you encounter an issue with an analyzer or would like to request a new one or an improvement to an existing analyzer, please open an issue on the analyzers' dedicated GitHub repository.

Alternatively, if you need to contact the project team, send an email to [email protected].

Community Discussions

We have set up a Google forum at https://groups.google.com/a/thehive-project.org/d/forum/users. To request access, you need a Google account. You may create one using a Gmail address or without one.

Website

https://thehive-project.org/

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].