OpenCTI Connectors
-
Updated
Jul 19, 2024 - Python
OpenCTI Connectors
Python library using the MISP Rest API
Clusters and elements to attach to MISP events or attributes (like threat actors)
Modules for expansion services, enrichment, import and export in MISP and other tools.
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
ThePhish: an automated phishing email analysis tool
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Extract and aggregate threat intelligence.
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Definition, description and relationship types of MISP objects
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
A utility repo to assist with converting between MISP and STIX formats
An OpenTAXII Configuration for MISP
The Project can be used to integrate QRadar with MISP Threat Sharing Platform
Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
BTG's purpose is to make fast and efficient search on IOC
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Add a description, image, and links to the misp topic page so that developers can more easily learn about it.
To associate your repository with the misp topic, visit your repo's landing page and select "manage topics."