Ecosyste.ms: Repos
An open API service providing repository metadata for many open source software ecosystems.
GitHub topics: misp
thalesgroup-cert/Thalesgroup-misp-taxonomy
This taxonomy was designed with the aim of enabling desired sharing and preventing unwanted sharing between Thales Group security communities.
Size: 68.4 KB - Last synced: about 9 hours ago - Pushed: over 1 year ago - Stars: 3 - Forks: 0
Bert-JanP/Open-Source-Threat-Intel-Feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Language: Python - Size: 66.4 KB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 460 - Forks: 55
Bert-JanP/Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
Language: Python - Size: 527 KB - Last synced: 1 day ago - Pushed: 1 day ago - Stars: 1,011 - Forks: 180
MISP/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Language: Python - Size: 302 MB - Last synced: about 21 hours ago - Pushed: 2 days ago - Stars: 480 - Forks: 164
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
Language: Python - Size: 1.65 MB - Last synced: about 22 hours ago - Pushed: 3 months ago - Stars: 790 - Forks: 133
MISP/misp-modules
Modules for expansion services, enrichment, import and export in MISP and other tools.
Language: Python - Size: 12 MB - Last synced: 1 day ago - Pushed: 3 days ago - Stars: 324 - Forks: 230
thalesgroup-cert/Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Language: Python - Size: 13.4 MB - Last synced: about 9 hours ago - Pushed: 9 days ago - Stars: 801 - Forks: 119
MISP/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
Language: Python - Size: 31.4 MB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 481 - Forks: 256
JiscCTI/misp-docker
Project to build a set of three docker images containing the components of MISP with self-configuration into a usable state from first start.
Language: Shell - Size: 424 KB - Last synced: 4 days ago - Pushed: 4 days ago - Stars: 3 - Forks: 1
TheHive-Project/TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Language: Scala - Size: 41.2 MB - Last synced: 4 days ago - Pushed: over 1 year ago - Stars: 3,229 - Forks: 599
eset/malware-ioc
Indicators of Compromises (IOC) of our various investigations
Language: YARA - Size: 1.55 MB - Last synced: 4 days ago - Pushed: about 1 month ago - Stars: 1,506 - Forks: 252
mthcht/awesome-lists
Security lists for SOC detections
Language: PowerShell - Size: 15.8 MB - Last synced: 1 day ago - Pushed: 6 days ago - Stars: 206 - Forks: 25
MISP/PyMISPGalaxies
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
Language: Python - Size: 617 KB - Last synced: 6 days ago - Pushed: 6 days ago - Stars: 18 - Forks: 9
MISP/PyMISP
Python library using the MISP Rest API
Language: Python - Size: 8.05 MB - Last synced: 5 days ago - Pushed: 5 days ago - Stars: 422 - Forks: 274
ntddk/virustream
A script to track malware IOCs with OSINT on Twitter.
Language: Python - Size: 4.88 KB - Last synced: 8 days ago - Pushed: 8 days ago - Stars: 51 - Forks: 9
DBHeise/MispSharp
C# Library for MISP
Language: Smalltalk - Size: 35.2 KB - Last synced: 11 days ago - Pushed: over 5 years ago - Stars: 1 - Forks: 2
coolacid/docker-misp
A (nearly) production ready Dockered MISP
Language: Shell - Size: 163 KB - Last synced: 11 days ago - Pushed: 4 months ago - Stars: 227 - Forks: 94
cerebrate-project/cerebrate-training
Cerebrate training materials
Language: TeX - Size: 16.9 MB - Last synced: 12 days ago - Pushed: 12 days ago - Stars: 8 - Forks: 1
CERN-CERT/pDNSSOC
Leveraging MISP indicators via a pDNS-based infrastructure as a poor manβs SOC.
Language: HTML - Size: 15.6 MB - Last synced: 16 days ago - Pushed: 16 days ago - Stars: 36 - Forks: 5
CrowdStrike/MISP-tools
Import CrowdStrike Threat Intelligence into your instance of MISP
Language: Python - Size: 7.33 MB - Last synced: 13 days ago - Pushed: 13 days ago - Stars: 32 - Forks: 8
ninoseki/iocingestor
An extendable tool to extract and aggregate IoCs from threat feeds
Language: Python - Size: 314 KB - Last synced: 5 days ago - Pushed: 3 months ago - Stars: 32 - Forks: 5
MISP/MISP-maltego
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Language: Python - Size: 4.66 MB - Last synced: 16 days ago - Pushed: over 1 year ago - Stars: 163 - Forks: 46
eCrimeLabs/cratos-fastapi
The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such as SIEM, DNS, Proxies, Firewalls, EDR, NDR and other that can consume a file with indicators.
Language: Python - Size: 257 KB - Last synced: 18 days ago - Pushed: 18 days ago - Stars: 13 - Forks: 2
Viet281101/MiniC-MISP_compiler
A small language compiler in Ocaml, translates MiniC syntax into MISP and runs
Language: OCaml - Size: 1.32 MB - Last synced: 25 days ago - Pushed: 4 months ago - Stars: 0 - Forks: 0
MISP/misp-objects
Definition, description and relationship types of MISP objects
Language: Python - Size: 1.68 MB - Last synced: 28 days ago - Pushed: 28 days ago - Stars: 88 - Forks: 116
emalderson/ThePhish
ThePhish: an automated phishing email analysis tool
Language: Python - Size: 4.54 MB - Last synced: 26 days ago - Pushed: over 1 year ago - Stars: 1,038 - Forks: 168
davidonzo/Threat-Intel
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
Language: Python - Size: 6.52 GB - Last synced: 28 days ago - Pushed: 29 days ago - Stars: 137 - Forks: 14
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Language: PHP - Size: 136 MB - Last synced: 28 days ago - Pushed: 29 days ago - Stars: 4,963 - Forks: 1,335
voxpupuli/puppet-misp
This module installs and configures MISP (Malware Information Sharing Platform)
Language: HTML - Size: 375 KB - Last synced: 28 days ago - Pushed: 29 days ago - Stars: 14 - Forks: 13
hazcod/mispsent
A tool that exports MISP threat intelligence attributes to Microsoft Sentinel SIEM.
Language: Go - Size: 35.2 KB - Last synced: 10 days ago - Pushed: 29 days ago - Stars: 1 - Forks: 0
MISP/misp-stix
MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
Language: Python - Size: 5.27 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 42 - Forks: 20
hazcod/MISP2Sentinel
A Python integration that fetches Threat Intelligence from MISP and publishes it to Microsoft Sentinel SIEM.
Language: Python - Size: 93.8 KB - Last synced: 10 days ago - Pushed: 3 months ago - Stars: 6 - Forks: 0
tenzir/threatbus
π Threat Bus β A threat intelligence dissemination layer for open-source security tools.
Language: Python - Size: 889 KB - Last synced: 11 days ago - Pushed: about 1 year ago - Stars: 255 - Forks: 15
cedricbonhomme/pyHIDS
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
Language: Python - Size: 778 KB - Last synced: 10 days ago - Pushed: 29 days ago - Stars: 49 - Forks: 15
harvard-itsecurity/docker-misp
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Language: Dockerfile - Size: 61.5 KB - Last synced: about 2 months ago - Pushed: about 3 years ago - Stars: 172 - Forks: 44
MISP/misp-decaying-models
MISP decaying models
Language: Shell - Size: 7.81 KB - Last synced: about 2 months ago - Pushed: almost 4 years ago - Stars: 9 - Forks: 4
MISP/misp-darwin
MISP darwin is a model and tools to automatically translate in natural language technical or structured information from MISP
Language: Python - Size: 2.93 KB - Last synced: about 2 months ago - Pushed: about 7 years ago - Stars: 5 - Forks: 3
MISP/misp-privacy-aware-exchange
A privacy-aware exchange module to securely and privately share your indicators
Language: Python - Size: 51.8 KB - Last synced: about 2 months ago - Pushed: over 6 years ago - Stars: 13 - Forks: 3
MISP/misp_dockerized_testing
Test MISP instances using a dockerized infrastructure
Language: Python - Size: 67.4 KB - Last synced: about 2 months ago - Pushed: over 3 years ago - Stars: 2 - Forks: 3
MISP/yara-misp
Export MISP attributes in Yara
Language: Python - Size: 5.86 KB - Last synced: about 2 months ago - Pushed: over 6 years ago - Stars: 12 - Forks: 2
MISP/misp-usage-statistics
MISP usage statistics using bokeh (as a static webpage)
Language: Python - Size: 3.3 MB - Last synced: about 2 months ago - Pushed: about 2 years ago - Stars: 3 - Forks: 1
MISP/misp-noticelist
Notice lists to inform users of MISP about legal or technical implication for some attributes, categories and objects
Size: 166 KB - Last synced: about 2 months ago - Pushed: almost 4 years ago - Stars: 8 - Forks: 6
MISP/LuaMISP
Lua Library to create and manipulate MISP entities
Language: Lua - Size: 18.6 KB - Last synced: about 2 months ago - Pushed: about 2 years ago - Stars: 3 - Forks: 1
MISP/misp-playbooks
MISP Playbooks
Language: Jupyter Notebook - Size: 10.9 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 148 - Forks: 13
MISP/misp-dashboard
A live dashboard for a real-time overview of threat intelligence from MISP instances
Language: JavaScript - Size: 5.09 MB - Last synced: about 2 months ago - Pushed: 10 months ago - Stars: 188 - Forks: 65
MISP/misp-book
User guide of MISP
Language: Shell - Size: 19.9 MB - Last synced: about 2 months ago - Pushed: 8 months ago - Stars: 240 - Forks: 102
MISP/misp-rfc
Specifications used in the MISP project including MISP core format
Language: HTML - Size: 1.03 MB - Last synced: about 2 months ago - Pushed: 3 months ago - Stars: 45 - Forks: 18
MISP/misp-cloud
misp-cloud - Cloud-ready images of MISP
Language: Shell - Size: 462 KB - Last synced: about 2 months ago - Pushed: over 1 year ago - Stars: 69 - Forks: 16
MISP/mail_to_misp
Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Language: Python - Size: 871 KB - Last synced: about 2 months ago - Pushed: 6 months ago - Stars: 67 - Forks: 25
MISP/threat-actor-intelligence-server
A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the known threat actors.
Language: Python - Size: 605 KB - Last synced: about 2 months ago - Pushed: 6 months ago - Stars: 43 - Forks: 12
MISP/misp-vagrant
Deploy MISP Project software with Vagrant.
Language: Shell - Size: 75.2 KB - Last synced: 10 days ago - Pushed: almost 4 years ago - Stars: 41 - Forks: 15
MISP/misp-compliance
Legal, procedural and policies document templates for operating MISP and information sharing communities
Size: 1.59 MB - Last synced: about 2 months ago - Pushed: over 1 year ago - Stars: 36 - Forks: 17
COSSAS/sacti
SACTI - Securely aggregate CTI sightings and report them on MISP
Language: Python - Size: 139 KB - Last synced: 2 months ago - Pushed: over 1 year ago - Stars: 12 - Forks: 3
TheHive-Project/TheHiveDocs π¦
Documentation of TheHive
Size: 29.8 MB - Last synced: about 2 months ago - Pushed: 8 months ago - Stars: 389 - Forks: 287
adulau/misp-osint-collection
Collection of best practices to add OSINT into MISP and/or MISP communities
Language: HTML - Size: 20.2 MB - Last synced: 26 days ago - Pushed: 8 months ago - Stars: 64 - Forks: 18
OpenCTI-Platform/connectors
OpenCTI Connectors
Language: Python - Size: 11.4 MB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 291 - Forks: 309
MISP/misp-sighting-server
MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indicators) in a space efficient way.
Language: Python - Size: 15.6 KB - Last synced: about 2 months ago - Pushed: 5 months ago - Stars: 14 - Forks: 4
MISP/intelligence-icons
intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.
Language: JavaScript - Size: 27.9 MB - Last synced: about 2 months ago - Pushed: about 5 years ago - Stars: 35 - Forks: 8
V1D1AN/S1EM
This project is a SIEM with SIRP and Threat Intel, all in one.
Language: Shell - Size: 10.7 MB - Last synced: 2 months ago - Pushed: 4 months ago - Stars: 382 - Forks: 72
MISP/misp-opendata
Tool to submit / delete data from MISP to opendata portal
Language: Python - Size: 246 KB - Last synced: about 2 months ago - Pushed: over 1 year ago - Stars: 8 - Forks: 1
gbikram/CTI-Automation-Platform
An automated Cyber Threat Intelligence (CTI) apparatus, implemented via a suite of Free & Open-source Software (FOSS)
Language: Python - Size: 94 MB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0
MISP/misp-grafana
A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
Language: Python - Size: 683 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 15 - Forks: 5
aleprada/PyMISP_CISA_alerts
Simple and automated way of gathering alerts about vulnerabilities and threats regarding ICS/SCADA reported by CISA.
Language: Python - Size: 19.5 KB - Last synced: 3 months ago - Pushed: almost 2 years ago - Stars: 6 - Forks: 2
aleprada/otx_2_misp
Script for gathering IoCs from OTX (AlienVault) and sending them to MISP.
Language: Python - Size: 167 KB - Last synced: 3 months ago - Pushed: about 2 years ago - Stars: 11 - Forks: 2
cloudtracer/ThreatPinchLookup
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Language: HTML - Size: 12 MB - Last synced: about 1 month ago - Pushed: over 5 years ago - Stars: 333 - Forks: 79
jonrau1/SyntheticSun
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Language: Python - Size: 58 MB - Last synced: 3 months ago - Pushed: almost 3 years ago - Stars: 72 - Forks: 15
CERT-Bund/yara-exporter π¦
Exporting MISP event attributes to yara rules usable with Thor apt scanner
Language: Python - Size: 14.6 KB - Last synced: 3 months ago - Pushed: about 7 years ago - Stars: 22 - Forks: 9
jymcheong/aptc
Automated Payload Test Controller
Language: Python - Size: 15.4 MB - Last synced: 3 months ago - Pushed: almost 7 years ago - Stars: 8 - Forks: 4
typosquatter/ail-typo-website
Website for ail-typo-squatting library
Language: JavaScript - Size: 3.81 MB - Last synced: 3 months ago - Pushed: 5 months ago - Stars: 42 - Forks: 2
qba73/terraform-provider-misp
Terraform provider for MISP - The Open Source Threat Intelligence Sharing Platform.
Size: 0 Bytes - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0
guppyfish123/SOC_Lab
SOC Lab Project - AWS, Elastic, TheHive, MISP, Cortex, Shuffle
Size: 9.48 MB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0
MISP/MISP-STIX-Converter
A utility repo to assist with converting between MISP and STIX formats
Language: Python - Size: 2.06 MB - Last synced: 11 days ago - Pushed: over 3 years ago - Stars: 63 - Forks: 31
3c7/aptmap
A map displaying threat actors from the misp-galaxy
Language: TypeScript - Size: 1.08 MB - Last synced: 3 months ago - Pushed: over 1 year ago - Stars: 31 - Forks: 6
MISP/x_old_misp_docker
MISP Docker (XME edition)
Language: Shell - Size: 193 KB - Last synced: about 2 months ago - Pushed: 5 months ago - Stars: 283 - Forks: 176
smidrkal/OpenCTI
Docker Compose template for an OpenCTI Demo
Language: Shell - Size: 464 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0
hm-seclab/YAFRA
YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Language: Python - Size: 1.26 MB - Last synced: 25 days ago - Pushed: over 2 years ago - Stars: 26 - Forks: 4
MISP/misp-airgap
Scripts to deploy and update MISP in air-gapped environments
Language: Shell - Size: 243 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 9 - Forks: 0
MISP/docker-misp π¦
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Language: Dockerfile - Size: 45.9 KB - Last synced: about 2 months ago - Pushed: 4 months ago - Stars: 102 - Forks: 31
cerebrate-project/cerebrate
Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools.
Language: PHP - Size: 13 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 78 - Forks: 16
MISP/misp-wireshark
Lua plugin to extract data from Wireshark and convert it into MISP format
Language: Lua - Size: 1.74 MB - Last synced: about 2 months ago - Pushed: 7 months ago - Stars: 42 - Forks: 5
MISP/MISP-Taxii-Server
An OpenTAXII Configuration for MISP
Language: Python - Size: 160 KB - Last synced: about 2 months ago - Pushed: over 1 year ago - Stars: 79 - Forks: 30
MISP/misp-packer
Build Automated Machine Images for MISP
Language: Shell - Size: 212 KB - Last synced: 10 days ago - Pushed: 11 months ago - Stars: 29 - Forks: 19
aleprada/ioc_tweets
Script for gathering IoCs from Twitter and sending them to MISP.
Language: Python - Size: 4.88 KB - Last synced: 3 months ago - Pushed: over 2 years ago - Stars: 7 - Forks: 2
eCrimeLabs/securityonion-ecrimelabs
Implementation of informaiton from MISP through the eCrimeLabs API and into SecurityOnion
Language: Shell - Size: 22.5 KB - Last synced: 18 days ago - Pushed: over 5 years ago - Stars: 7 - Forks: 2
coolacid/misp_feedgen
Feed Generator for MISP
Language: Python - Size: 63.5 KB - Last synced: 11 days ago - Pushed: over 1 year ago - Stars: 19 - Forks: 1
davidonzo/Threat-Intel-Domain-WL
Domain white list applied to https://github.com/davidonzo/Threat-Intel
Language: Python - Size: 14.6 KB - Last synced: 7 months ago - Pushed: 7 months ago - Stars: 2 - Forks: 0
pyperanger/gorootcheck
Standalone rootcheck by OSSEC wrtitten in Go ( rootkit detection )
Language: Go - Size: 13.1 MB - Last synced: 4 months ago - Pushed: almost 4 years ago - Stars: 8 - Forks: 3
mohlcyber/OpenDXL-ATD-MISP
Automated threat intelligence collection with McAfee ATD, OpenDXL and MISP
Language: Python - Size: 51.8 KB - Last synced: 6 months ago - Pushed: about 4 years ago - Stars: 22 - Forks: 10
mohlcyber/MISP-STIX-ESM
Exports MISP events to STIX and ingest into McAfee ESM
Language: Python - Size: 11.7 KB - Last synced: 6 months ago - Pushed: about 4 years ago - Stars: 16 - Forks: 4
tylabs/dovehawk
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
Language: Zeek - Size: 1.59 MB - Last synced: 6 months ago - Pushed: almost 3 years ago - Stars: 120 - Forks: 24
tux78/SOAR
docker-based installation of MISP and intelMQ
Language: JavaScript - Size: 2.43 MB - Last synced: 7 months ago - Pushed: about 3 years ago - Stars: 2 - Forks: 0
ruggdoll/CTI-Feedz
TLP:White CTI Feeds
Size: 99.3 MB - Last synced: 7 months ago - Pushed: 11 months ago - Stars: 2 - Forks: 0
eCrimeLabs/vt2misp
Script to fetch data from virustotal and add it to a specific event as an object
Language: Python - Size: 25.4 KB - Last synced: 7 months ago - Pushed: over 4 years ago - Stars: 8 - Forks: 4
eCrimeLabs/eCrimeLabsFeeds
A tool to fetch all the feeds presented through the API
Language: Python - Size: 11.7 KB - Last synced: 7 months ago - Pushed: almost 5 years ago - Stars: 0 - Forks: 0
splunk/TA-misp_es
MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
Size: 78.1 KB - Last synced: 27 days ago - Pushed: 10 months ago - Stars: 11 - Forks: 9
StamusNetworks/surimisp
Check IOC provided by a MISP instance on Suricata events
Language: Python - Size: 31.3 KB - Last synced: 27 days ago - Pushed: almost 5 years ago - Stars: 18 - Forks: 4
pe3zx/mthc
All-in-one bundle of MISP, TheHive and Cortex
Size: 372 KB - Last synced: 7 months ago - Pushed: over 1 year ago - Stars: 160 - Forks: 37
ilyaglow/dockerfiles
π Dockerfiles for apps I use. Also take a look at https://github.com/security-dockerfiles
Language: Dockerfile - Size: 93.8 KB - Last synced: 28 days ago - Pushed: over 3 years ago - Stars: 23 - Forks: 8
airbus-cert/mispy
Another MISP module for Python
Language: Python - Size: 82 KB - Last synced: 23 days ago - Pushed: about 4 years ago - Stars: 17 - Forks: 4
BlazedLearning/PhishE
This project is a phishing classification ML system that can detect attacks through a hybrid URL and language models. It can also be connected to a MISP instance where it can take in new threats and classifying them automatically.
Language: Python - Size: 2.89 MB - Last synced: 6 months ago - Pushed: about 1 year ago - Stars: 5 - Forks: 1