206 Open source projects that are alternatives of or similar to mail_to_misp

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Bringing you the best of the worst files on the Internet.

A curses-style interface for automatic takedown notification based on MISP events.

Best practices in threat intelligence

Tracking APT IOCs

recon-ng modules for Censys

PatrowlHears - Vulnerability Intelligence Center / Exploits

Utilities for Sysmon

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

Threat research and reporting from IronNet's Threat Research Teams

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

🚌 The missing link to connect open-source threat intelligence tools.

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Extract and aggregate threat intelligence.

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

OpenCTI connectors

Personal compilation of APT malware from whitepaper releases, documents and own research

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Collection of best practices to add OSINT into MISP and/or MISP communities

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

Signature base for my scanner tools

CIF v3 -- the fastest way to consume threat intelligence

Explore Indicators of Compromise Automatically

CyCAT.org API back-end server including crawlers

A (nearly) production ready Dockered MISP

Microsoft Sentinel SOC Operations

the fastest way to consume threat intelligence.

Capture passwords of login attempts on non-existent and disabled accounts.

A helper to run OSINT queries & manage results continuously

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

An extendable tool to extract and aggregate IoCs from threat feeds

Real-time HTTP Intrusion Detection

intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

Malware Sample Sources

Your Everyday Threat Intelligence

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

ThePhish: an automated phishing email analysis tool

Python bindings for Yeti's API

The Ultimate OSINT and Threat Hunting Framework

Threat Hunting queries for various attacks

All-in-one bundle of MISP, TheHive and Cortex

Kaspersky's GReAT KLara

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Clusters and elements to attach to MISP events or attributes (like threat actors)

Don't Just Search OSINT. Sweep It.

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

A toolkit for Security Researchers

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Sysmon configuration file template with default high-quality event tracing

This repo contains logstash of various honeypots

MISP trainings, threat intel and information sharing training materials with source code

#ThreatHunting #DFIR #Malware #Detection Mind Maps

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Find phishing kits which use your brand/organization's files and image.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform