63 Open source projects that are alternatives of or similar to cif-v5

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

PatrowlHears - Vulnerability Intelligence Center / Exploits

Defanged Indicator of Compromise (IOC) Extractor.

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

Powerful plugins and add-ons for hackers

🚌 The missing link to connect open-source threat intelligence tools.

Python library using the MISP Rest API

Intelligence and Reconnaissance Package/Bundle installer.

TAXII client implementation from EclecticIQ

Threat research and reporting from IronNet's Threat Research Teams

OSINT Threat Intel Interface - CLI for HoneyDB

CLI tool for open source and threat intelligence

A dashboard for a real-time overview of threat intelligence from MISP instances

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

Magento GraphQL data models and query builders for AEM

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

internet monitoring osint telegram bot for windows

Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

Best practices in threat intelligence

Curated list of awesome cybersecurity companies and solutions.

Python bindings for Yeti's API

CIF v3 -- the fastest way to consume threat intelligence

Your Everyday Threat Intelligence

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Awesome collection of great and useful resources concerning intelligence writing such as manuals/guides, standards, books, and articles

The Correlated CVE Vulnerability And Threat Intelligence Database API

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Maven template to create new CIF Project AEM projects that follow best practices

Extract and aggregate threat intelligence.

Multithreaded threat Intelligence gathering built with Python3

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Hashes of infamous malware

Sysmon configuration file template with default high-quality event tracing

Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

MISP trainings, threat intel and information sharing training materials with source code

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

TAXII server implementation in Python from EclecticIQ

An extendable tool to extract and aggregate IoCs from threat feeds

the fastest way to consume threat intelligence.

Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.

Phishing catcher using Certstream

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

This repo contains logstash of various honeypots

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Bringing you the best of the worst files on the Internet.

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Standard-Format Threat Intelligence Feeds

Virustotal Data to Timesketch

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Threat Feed Aggregation, Made Easy

Defund the Police.

Imports Alienvault OTX pulses to a MISP instance

Tracking APT IOCs

AEM Commerce connector for Magento and GraphQL

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

Domain name permutation engine written in Go