MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Stars: ✭ 3,485 (+18242.11%)
docker-mispA (nearly) production ready Dockered MISP
Stars: ✭ 184 (+868.42%)
mail to mispConnect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Stars: ✭ 61 (+221.05%)
misp-osint-collectionCollection of best practices to add OSINT into MISP and/or MISP communities
Stars: ✭ 54 (+184.21%)
intelligence-iconsintelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.
Stars: ✭ 32 (+68.42%)
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (+15.79%)
connectorsOpenCTI connectors
Stars: ✭ 135 (+610.53%)
SyntheticSunSyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Stars: ✭ 49 (+157.89%)
cycat-serviceCyCAT.org API back-end server including crawlers
Stars: ✭ 25 (+31.58%)
misp-objectsDefinition, description and relationship types of MISP objects
Stars: ✭ 73 (+284.21%)
ThePhishThePhish: an automated phishing email analysis tool
Stars: ✭ 676 (+3457.89%)
ioc-fangerFang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Stars: ✭ 47 (+147.37%)
HatefulUsersTwitterCode for the paper "Characterizing and Detecting Hateful Users on Twitter"
Stars: ✭ 69 (+263.16%)
yara-exporterExporting MISP event attributes to yara rules usable with Thor apt scanner
Stars: ✭ 22 (+15.79%)
ScrummageThe Ultimate OSINT and Threat Hunting Framework
Stars: ✭ 355 (+1768.42%)
MurMurHashThis little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
Stars: ✭ 79 (+315.79%)
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (+136.84%)
ThehiveTheHive: a Scalable, Open Source and Free Security Incident Response Platform
Stars: ✭ 2,300 (+12005.26%)
coronavirus-covid-19-SARS-CoV-2-IoCsAll the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
Stars: ✭ 67 (+252.63%)
SSHapendoesCapture passwords of login attempts on non-existent and disabled accounts.
Stars: ✭ 31 (+63.16%)
iocingestorAn extendable tool to extract and aggregate IoCs from threat feeds
Stars: ✭ 25 (+31.58%)
misp-vagrantDeploy MISP Project software with Vagrant.
Stars: ✭ 37 (+94.74%)
FireHOL-IP-AggregatorApplication for keeping feeds from FireHOL https://github.com/firehol/blocklist-ipsets with IP addresses appearance history. HTTP-based API service is developed for search requests.
Stars: ✭ 26 (+36.84%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+473.68%)
MOSPA collaborative platform for creating, editing and sharing JSON objects.
Stars: ✭ 72 (+278.95%)
d4-coreD4 core software (server and sample sensor client)
Stars: ✭ 40 (+110.53%)
pyetiPython bindings for Yeti's API
Stars: ✭ 15 (-21.05%)
S1EMThis project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+1321.05%)
CowrieCowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
Stars: ✭ 3,810 (+19952.63%)
Threat IntelArchive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Stars: ✭ 252 (+1226.32%)
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (+1157.89%)
misp-packerBuild Automated Machine Images for MISP
Stars: ✭ 25 (+31.58%)
ElementalElemental - An ATT&CK Threat Library
Stars: ✭ 241 (+1168.42%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+1084.21%)
Ti collector本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。
Stars: ✭ 254 (+1236.84%)
sqhunterA simple threat hunting tool based on osquery, Salt Open and Cymon API
Stars: ✭ 64 (+236.84%)
OmnibusThe OSINT Omnibus (beta release)
Stars: ✭ 243 (+1178.95%)
TwiTiThis is a project of "#Twiti: Social Listening for Threat Intelligence" (TheWebConf 2021)
Stars: ✭ 120 (+531.58%)
Awesome DevsecopsAn authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Stars: ✭ 2,805 (+14663.16%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+1052.63%)
csirtg-smrt-v1the fastest way to consume threat intelligence.
Stars: ✭ 27 (+42.11%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+1078.95%)
ScotSandia Cyber Omni Tracker (SCOT)
Stars: ✭ 206 (+984.21%)
Misp ModulesModules for expansion services, import and export in MISP
Stars: ✭ 198 (+942.11%)
PhishruffusIntelligent threat hunter and phishing servers
Stars: ✭ 44 (+131.58%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (+584.21%)
Misp TrainingMISP trainings, threat intel and information sharing training materials with source code
Stars: ✭ 185 (+873.68%)