MOSPA collaborative platform for creating, editing and sharing JSON objects.
Stars: ✭ 72 (+89.47%)
Powerful PluginsPowerful plugins and add-ons for hackers
Stars: ✭ 621 (+1534.21%)
Sysmon ConfigSysmon configuration file template with default high-quality event tracing
Stars: ✭ 3,287 (+8550%)
TwiTiThis is a project of "#Twiti: Social Listening for Threat Intelligence" (TheWebConf 2021)
Stars: ✭ 120 (+215.79%)
misp-packerBuild Automated Machine Images for MISP
Stars: ✭ 25 (-34.21%)
ThreatpinchlookupDocumentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Stars: ✭ 257 (+576.32%)
Open-source-tools-for-CTIPublic Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
Stars: ✭ 91 (+139.47%)
d4-coreD4 core software (server and sample sensor client)
Stars: ✭ 40 (+5.26%)
Threat-Intel-Slack-BotInteractive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
Stars: ✭ 26 (-31.58%)
Ti collector本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。
Stars: ✭ 254 (+568.42%)
GDPatrolA Lambda-powered Security Orchestration framework for AWS GuardDuty
Stars: ✭ 50 (+31.58%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+489.47%)
Threat IntelArchive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Stars: ✭ 252 (+563.16%)
OmnibusThe OSINT Omnibus (beta release)
Stars: ✭ 243 (+539.47%)
ElementalElemental - An ATT&CK Threat Library
Stars: ✭ 241 (+534.21%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+476.32%)
ScotSandia Cyber Omni Tracker (SCOT)
Stars: ✭ 206 (+442.11%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-52.63%)
Misp ModulesModules for expansion services, import and export in MISP
Stars: ✭ 198 (+421.05%)
Misp WarninglistsWarning lists to inform users of MISP about potential false-positives or other information in indicators
Stars: ✭ 184 (+384.21%)
PymispPython library using the MISP Rest API
Stars: ✭ 254 (+568.42%)
yara-exporterExporting MISP event attributes to yara rules usable with Thor apt scanner
Stars: ✭ 22 (-42.11%)
awesome-intelligence-writingAwesome collection of great and useful resources concerning intelligence writing such as manuals/guides, standards, books, and articles
Stars: ✭ 285 (+650%)
PatrowlenginesPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 162 (+326.32%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (+292.11%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: ✭ 148 (+289.47%)
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (+252.63%)
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (+528.95%)
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (+18.42%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+492.11%)
PhishruffusIntelligent threat hunter and phishing servers
Stars: ✭ 44 (+15.79%)
Awesome DevsecopsAn authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Stars: ✭ 2,805 (+7281.58%)
ThehiveTheHive: a Scalable, Open Source and Free Security Incident Response Platform
Stars: ✭ 2,300 (+5952.63%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (+247.37%)
Misp MaltegoSet of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Stars: ✭ 112 (+194.74%)
PhishingkithunterFind phishing kits which use your brand/organization's files and image.
Stars: ✭ 177 (+365.79%)
OpenctiAuthors
Stars: ✭ 2,165 (+5597.37%)
CertstreammonitorMonitor certificates generated for specific domain strings and associated, store data into sqlite3 database, alert you when sites come online.
Stars: ✭ 111 (+192.11%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (+184.21%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (+176.32%)
DovehawkDovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
Stars: ✭ 97 (+155.26%)
S1EMThis project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+610.53%)
TelerReal-time HTTP Intrusion Detection
Stars: ✭ 1,248 (+3184.21%)
Signature BaseSignature base for my scanner tools
Stars: ✭ 1,212 (+3089.47%)
PygreynoisePython3 library and command line for GreyNoise
Stars: ✭ 100 (+163.16%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (+365.79%)
ScrummageThe Ultimate OSINT and Threat Hunting Framework
Stars: ✭ 355 (+834.21%)
Bearded AvengerCIF v3 -- the fastest way to consume threat intelligence
Stars: ✭ 152 (+300%)
Ioc ExplorerExplore Indicators of Compromise Automatically
Stars: ✭ 73 (+92.11%)
SSHapendoesCapture passwords of login attempts on non-existent and disabled accounts.
Stars: ✭ 31 (-18.42%)
HippocampeThreat Feed Aggregation, Made Easy
Stars: ✭ 149 (+292.11%)
MimirOSINT Threat Intel Interface - CLI for HoneyDB
Stars: ✭ 104 (+173.68%)
cif-v5The FASTEST way to consume threat intel.
Stars: ✭ 53 (+39.47%)