misp-osint-collectionCollection of best practices to add OSINT into MISP and/or MISP communities
Stars: ✭ 54 (-70.65%)
MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Stars: ✭ 3,485 (+1794.02%)
misp-takedownA curses-style interface for automatic takedown notification based on MISP events.
Stars: ✭ 19 (-89.67%)
intelligence-iconsintelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.
Stars: ✭ 32 (-82.61%)
connectorsOpenCTI connectors
Stars: ✭ 135 (-26.63%)
SyntheticSunSyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Stars: ✭ 49 (-73.37%)
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-88.04%)
cycat-serviceCyCAT.org API back-end server including crawlers
Stars: ✭ 25 (-86.41%)
mail to mispConnect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Stars: ✭ 61 (-66.85%)
ThePhishThePhish: an automated phishing email analysis tool
Stars: ✭ 676 (+267.39%)
Ti collector本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。
Stars: ✭ 254 (+38.04%)
Threat IntelArchive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Stars: ✭ 252 (+36.96%)
OmnibusThe OSINT Omnibus (beta release)
Stars: ✭ 243 (+32.07%)
ElementalElemental - An ATT&CK Threat Library
Stars: ✭ 241 (+30.98%)
yara-exporterExporting MISP event attributes to yara rules usable with Thor apt scanner
Stars: ✭ 22 (-88.04%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+22.28%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+19.02%)
ScotSandia Cyber Omni Tracker (SCOT)
Stars: ✭ 206 (+11.96%)
Misp ModulesModules for expansion services, import and export in MISP
Stars: ✭ 198 (+7.61%)
Misp TrainingMISP trainings, threat intel and information sharing training materials with source code
Stars: ✭ 185 (+0.54%)
PhishingkithunterFind phishing kits which use your brand/organization's files and image.
Stars: ✭ 177 (-3.8%)
misp-objectsDefinition, description and relationship types of MISP objects
Stars: ✭ 73 (-60.33%)
Sweetie DataThis repo contains logstash of various honeypots
Stars: ✭ 163 (-11.41%)
PatrowlenginesPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 162 (-11.96%)
ioc-fangerFang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Stars: ✭ 47 (-74.46%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: ✭ 148 (-19.57%)
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (+29.89%)
iocingestorAn extendable tool to extract and aggregate IoCs from threat feeds
Stars: ✭ 25 (-86.41%)
csirtg-smrt-v1the fastest way to consume threat intelligence.
Stars: ✭ 27 (-85.33%)
misp-vagrantDeploy MISP Project software with Vagrant.
Stars: ✭ 37 (-79.89%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+1048.91%)
Awesome DevsecopsAn authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Stars: ✭ 2,805 (+1424.46%)
d4-coreD4 core software (server and sample sensor client)
Stars: ✭ 40 (-78.26%)
Misp DashboardA dashboard for a real-time overview of threat intelligence from MISP instances
Stars: ✭ 142 (-22.83%)
Misp WarninglistsWarning lists to inform users of MISP about potential false-positives or other information in indicators
Stars: ✭ 184 (+0%)
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (-75.54%)
misp-packerBuild Automated Machine Images for MISP
Stars: ✭ 25 (-86.41%)
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (-27.17%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (-19.02%)
Chatterinternet monitoring osint telegram bot for windows
Stars: ✭ 123 (-33.15%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (-19.57%)
CowrieCowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
Stars: ✭ 3,810 (+1970.65%)
OpenctiAuthors
Stars: ✭ 2,165 (+1076.63%)
Threatbus🚌 The missing link to connect open-source threat intelligence tools.
Stars: ✭ 139 (-24.46%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (-29.35%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (-28.26%)
S1EMThis project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+46.74%)
Misp MaltegoSet of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Stars: ✭ 112 (-39.13%)
pyetiPython bindings for Yeti's API
Stars: ✭ 15 (-91.85%)
CertstreammonitorMonitor certificates generated for specific domain strings and associated, store data into sqlite3 database, alert you when sites come online.
Stars: ✭ 111 (-39.67%)
ThehiveTheHive: a Scalable, Open Source and Free Security Incident Response Platform
Stars: ✭ 2,300 (+1150%)