S2ANS2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
Stars: ✭ 70 (+32.08%)
Mutual labels: suricata, mitre-attack, suricata-rules
Misp MaltegoSet of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Stars: ✭ 112 (+111.32%)
Mutual labels: threat-intelligence, mitre-attack
Security OnionSecurity Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
Stars: ✭ 2,956 (+5477.36%)
Mutual labels: network-security-monitoring, nsm
ElementalElemental - An ATT&CK Threat Library
Stars: ✭ 241 (+354.72%)
Mutual labels: threat-intelligence, mitre-attack
connectorsOpenCTI connectors
Stars: ✭ 135 (+154.72%)
Mutual labels: threat-intelligence, mitre-attack
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (+145.28%)
Mutual labels: threat-intelligence, suricata-rules
cycat-serviceCyCAT.org API back-end server including crawlers
Stars: ✭ 25 (-52.83%)
Mutual labels: threat-intelligence, mitre-attack
attckr⚔️MITRE ATT&CK Machinations in R
Stars: ✭ 22 (-58.49%)
Mutual labels: threat-intelligence, mitre-attack
testmynids.orgA website and framework for testing NIDS detection
Stars: ✭ 55 (+3.77%)
Mutual labels: suricata, network-security-monitoring
docker-suricataA Suricata Docker image.
Stars: ✭ 120 (+126.42%)
Mutual labels: suricata, nsm
altprobecollector for XDR and security posture service
Stars: ✭ 62 (+16.98%)
Mutual labels: suricata
IronNetTRThreat research and reporting from IronNet's Threat Research Teams
Stars: ✭ 36 (-32.08%)
Mutual labels: threat-intelligence
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+32.08%)
Mutual labels: threat-intelligence
gonidsgonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
Stars: ✭ 140 (+164.15%)
Mutual labels: suricata
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-58.49%)
Mutual labels: threat-intelligence
examplesNetwork Service Mesh examples repo
Stars: ✭ 14 (-73.58%)
Mutual labels: nsm
misp-takedownA curses-style interface for automatic takedown notification based on MISP events.
Stars: ✭ 19 (-64.15%)
Mutual labels: threat-intelligence
TheBriarPatchAn extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS
Stars: ✭ 21 (-60.38%)
Mutual labels: suricata
pybinaryedgePython 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/
Stars: ✭ 16 (-69.81%)
Mutual labels: threat-intelligence
rstthreatsAggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.
Stars: ✭ 17 (-67.92%)
Mutual labels: threat-intelligence