A Cortex Responder for submitting artifacts to CIFv3

Periodically migrate information from a TheHive server to a LimeSurvey server for confirmed incidents.

An add-on that adds an Alert Action for creating alerts in TheHive.

A Cortex responder to award/penalize CTFd players based on the quality of the alerts they generate in TheHive.

AWS Lambda function for handling TheHive webhook events

Larva, the commandline client for TheHive: https://github.com/CERT-BDF/TheHive

Script for automatically create a case in The Hive and start Cortex analyzers adapted to fit the observables.

Resources for TheHive and Cortex

A collection of scripts for the TheHive

Checks observables/ioc in TheHive/Cortex against the MISP warningslists

CrowdStrike integration with TheHive

Falcon streaming api alert integration for TheHive

Cortex jobs automation for TheHive

Analyzer for TheHive Cortex Soc platform. Allows you to run observables against default and custom ClamAV rules.

Send alerts from Splunk to TheHive

Python script to automatically create sigma rules from The hive observables

Crowdstrike Falcon streaming api client in python

This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.

This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.