misp · GitHub Topics

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

misp threat-sharing threat-hunting threatintel malware-analysis stix information-exchange fraud-management 安全 cti Cybersecurity fraud-detection fraud-prevention threat-analysis information-sharing threat-intelligence threat-intelligence-platform intelligence threat-intel

PHP 5.76 k

4 天前

TheHive-Project / TheHive

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Scala 3.69 k

3 年前

eset / malware-ioc

Indicators of Compromises (IOC) of our various investigations

IoC (Disambiguation)Malware yara misp

YARA 1.79 k

9 天前

Bert-JanP / Hunting-Queries-Detection-Rules

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Azure defender-for-endpoint dfir kql sentinel threat-hunting vulnerability-management zero-day blueteam Cybersecurity 安全 misp

Python 1.47 k

7 天前

emalderson / ThePhish

ThePhish: an automated phishing email analysis tool

email detection Malware phishing Cybersecurity misp thehive thehive4 thehive4py indicators-of-compromise Python incident-response 免费 digital-forensics threat-intelligence Web app attack Script

Python 1.24 k

10 个月前

thalesgroup-cert / Watcher

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

Cybersecurity threat-hunting Django React rss-bridge misp thehive 安全 incident-response threat-detection threat-intelligence nltk watcher certificate-transparency OSINT osint-python Web app 监控 phishing

Python 929

3 天前

InQuest / ThreatIngestor

Extract and aggregate threat intelligence.

IoC (Disambiguation)indicators-of-compromise threatintel threat-intelligence OSINT dfir malware-research 安全 threat-sharing threat-feeds threat-hunting misp fraud-detection threat-analysis intelligence-gathering threat-intelligence-platform yara soar

Python 867

1 年前

Bert-JanP / Open-Source-Threat-Intel-Feeds

This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.

c2 misp threat-intelligence threat-hunting Malware phishing IoC (Disambiguation)

Python 686

5 个月前

MISP / misp-warninglists

Warning lists to inform users of MISP about potential false-positives or other information in indicators

misp network-forensics dfir threat-intelligence

Python 575

11 天前

MISP / misp-galaxy

Clusters and elements to attach to MISP events or attributes (like threat actors)

threat-hunting information-exchange misp classification stix threat-intelligence Malware

Python 565