YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-63.93%)
MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Stars: ✭ 3,485 (+5613.11%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+13.11%)
misp-takedownA curses-style interface for automatic takedown notification based on MISP events.
Stars: ✭ 19 (-68.85%)
PatrowlhearsPatrowlHears - Vulnerability Intelligence Center / Exploits
Stars: ✭ 89 (+45.9%)
SysmontoolsUtilities for Sysmon
Stars: ✭ 903 (+1380.33%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+3365.57%)
StalkphishStalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
Stars: ✭ 256 (+319.67%)
OSINT-BrazucaRepositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Stars: ✭ 508 (+732.79%)
IronNetTRThreat research and reporting from IronNet's Threat Research Teams
Stars: ✭ 36 (-40.98%)
pybinaryedgePython 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/
Stars: ✭ 16 (-73.77%)
Threatbus🚌 The missing link to connect open-source threat intelligence tools.
Stars: ✭ 139 (+127.87%)
sqhunterA simple threat hunting tool based on osquery, Salt Open and Cymon API
Stars: ✭ 64 (+4.92%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (+619.67%)
DovehawkDovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
Stars: ✭ 97 (+59.02%)
connectorsOpenCTI connectors
Stars: ✭ 135 (+121.31%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+259.02%)
PatrowlenginesPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 162 (+165.57%)
misp-osint-collectionCollection of best practices to add OSINT into MISP and/or MISP communities
Stars: ✭ 54 (-11.48%)
SyntheticSunSyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Stars: ✭ 49 (-19.67%)
Threat IntelArchive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Stars: ✭ 252 (+313.11%)
Signature BaseSignature base for my scanner tools
Stars: ✭ 1,212 (+1886.89%)
Bearded AvengerCIF v3 -- the fastest way to consume threat intelligence
Stars: ✭ 152 (+149.18%)
Ioc ExplorerExplore Indicators of Compromise Automatically
Stars: ✭ 73 (+19.67%)
cycat-serviceCyCAT.org API back-end server including crawlers
Stars: ✭ 25 (-59.02%)
docker-mispA (nearly) production ready Dockered MISP
Stars: ✭ 184 (+201.64%)
csirtg-smrt-v1the fastest way to consume threat intelligence.
Stars: ✭ 27 (-55.74%)
SSHapendoesCapture passwords of login attempts on non-existent and disabled accounts.
Stars: ✭ 31 (-49.18%)
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (+291.8%)
BesafeBeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you
Stars: ✭ 21 (-65.57%)
iocingestorAn extendable tool to extract and aggregate IoCs from threat feeds
Stars: ✭ 25 (-59.02%)
TelerReal-time HTTP Intrusion Detection
Stars: ✭ 1,248 (+1945.9%)
intelligence-iconsintelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.
Stars: ✭ 32 (-47.54%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+78.69%)
YetiYour Everyday Threat Intelligence
Stars: ✭ 1,037 (+1600%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (+144.26%)
ThePhishThePhish: an automated phishing email analysis tool
Stars: ✭ 676 (+1008.2%)
pyetiPython bindings for Yeti's API
Stars: ✭ 15 (-75.41%)
ScrummageThe Ultimate OSINT and Threat Hunting Framework
Stars: ✭ 355 (+481.97%)
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (+119.67%)
KlaraKaspersky's GReAT KLara
Stars: ✭ 565 (+826.23%)
ThreatpinchlookupDocumentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Stars: ✭ 257 (+321.31%)
Misp GalaxyClusters and elements to attach to MISP events or attributes (like threat actors)
Stars: ✭ 276 (+352.46%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+268.85%)
WatcherWatcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Stars: ✭ 324 (+431.15%)
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (+495.08%)
Sysmon ConfigSysmon configuration file template with default high-quality event tracing
Stars: ✭ 3,287 (+5288.52%)
Sweetie DataThis repo contains logstash of various honeypots
Stars: ✭ 163 (+167.21%)
Misp TrainingMISP trainings, threat intel and information sharing training materials with source code
Stars: ✭ 185 (+203.28%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+267.21%)
DnstwistDomain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Stars: ✭ 3,124 (+5021.31%)
PhishingkithunterFind phishing kits which use your brand/organization's files and image.
Stars: ✭ 177 (+190.16%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (+72.13%)