MISP (core software) - Open Source Threat Intelligence and Sharing Platform
-
Updated
Nov 27, 2024 - PHP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
ThePhish: an automated phishing email analysis tool
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Extract and aggregate threat intelligence.
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Clusters and elements to attach to MISP events or attributes (like threat actors)
Python library using the MISP Rest API
Documentation of TheHive
OpenCTI Connectors
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Modules for expansion services, enrichment, import and export in MISP and other tools.
User guide of MISP
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
A (nearly) production ready Dockered MISP
Add a description, image, and links to the misp topic page so that developers can more easily learn about it.
To associate your repository with the misp topic, visit your repo's landing page and select "manage topics."