A curated list of awesome malware analysis tools and resources.
-
Updated
Nov 5, 2019 - 622 commits
#
threat-intelligence
- Sign up for GitHub or sign in to edit this page
Here are 198 public repositories matching this topic...
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
-
Updated
Nov 4, 2019 - 141 commits
Phishing catcher using Certstream
-
Updated
Nov 4, 2019 - 66 commits
- Python
Malcom - Malware Communications Analyzer
-
Updated
Oct 25, 2019 - 708 commits
- Python
Open Cyber Threat Intelligence Platform
-
Updated
Nov 4, 2019 - 849 commits
- JavaScript
The Correlated CVE Vulnerability And Threat Intelligence Database API
-
Updated
Nov 4, 2019 - 79 commits
- Python
1
ufth
commented
May 6, 2019
proxycheck.io is very convenient service for detecting proxies with sane updated database. it has some interesting fields in its responses (see below)
without API key everyone gets 100 queries per day:
curl -s 'http://proxycheck.io/v2/37.60.48.2?risk=1&vpn=1&seen=1&port=1' | jq
{
"status": "ok",
"37.60.48.2": {
"proxy": "yes",
"type": "VPAdvanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
-
Updated
Oct 31, 2019 - 410 commits
- Batchfile
The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
-
Updated
Oct 30, 2019 - 23 commits
- JavaScript
pichlou
commented
Jan 7, 2019
Hi
i am using docker-compose in windows 7
postgres,rabbitmq and django application services build,but nginx service has an error!
nginx:
volumes:
- ./nginx_docker.conf:/etc/nginx/conf.d/default.conf
in this part "nginx_docker.conf" is not a directory and i have error "not a directory" in running "docker-compose up" command.
what is your solution for my problem?
Open
Feedback
1
A browser extension for OSINT search
-
Updated
Nov 4, 2019 - 591 commits
- TypeScript
The OSINT Omnibus (beta release)
-
Updated
Nov 4, 2019 - 127 commits
- Python
Defanged Indicator of Compromise (IOC) Extractor.
-
Updated
Nov 3, 2019 - 187 commits
- Python
本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。
-
Updated
Nov 2, 2019 - 170 commits
- Python
Extract and aggregate threat intelligence.
-
Updated
Nov 4, 2019 - 413 commits
- Python
Sandia Cyber Omni Tracker (SCOT)
-
Updated
Nov 1, 2019 - 8 commits
- JavaScript
Personal compilation of APT malware from whitepaper releases, documents and own research
-
Updated
Oct 14, 2019 - 138 commits
Clusters and elements to attach to MISP events or attributes (like threat actors)
-
Updated
Nov 4, 2019 - 1 commits
- Python
Don't Just Search OSINT. Sweep It.
-
Updated
Nov 4, 2019 - 279 commits
- Python
Find phishing kits which use your brand/organization's files and image.
-
Updated
Oct 31, 2019 - 20 commits
- Python
Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).
-
Updated
Nov 4, 2019 - 83 commits
Modules for expansion services, import and export in MISP
-
Updated
Nov 4, 2019 - 1 commits
- Python
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
-
Updated
Oct 31, 2019 - 49 commits
- Python
Warning lists to inform users of MISP about potential false-positives or other information in indicators
-
Updated
Nov 4, 2019 - 339 commits
- Python
Domain name permutation engine written in Go
-
Updated
Nov 2, 2019 - 105 commits
- Go
Hello everyone!
I have a few doubts on how events are handled across misp instances and Orgs. As I still haven't complete domain of the code and my curiosity is killing me, I'm coming here to ask help =]
Wil