#Misp
Showing 21 of 21 repositories tagged #misp, ranked by stars
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
ThePhish: an automated phishing email analysis tool
Watcher - Open Source AI-powered Cyber Threat Intelligence & Hunting Platform. Developed with Django & React JS.
Extract and aggregate threat intelligence.
Clusters and elements to attach to MISP events or attributes (like threat actors)
OpenCTI Connectors
This project is a SIEM with SIRP and Threat Intel, all in one.
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
A live dashboard for a real-time overview of threat intelligence from MISP instances
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
This repository contains Malicious Indicator of Compromise (IOC) blocklist for MISP, firewall which is vital for cybersecurity professionals to enhance threat detection and improve incident response capabilities.
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Import specific data sources into the Sigma generic and open signature format.
Legal, procedural and policies document templates for operating MISP and information sharing communities
FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
CyCAT.org API back-end server including crawlers
Fraud prevention tool
YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.