OpenCTI Connectors
-
Updated
May 27, 2024 - Python
OpenCTI Connectors
Definition, description and relationship types of MISP objects
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
Security lists for SOC detections
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Python library using the MISP Rest API
Clusters and elements to attach to MISP events or attributes (like threat actors)
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Modules for expansion services, enrichment, import and export in MISP and other tools.
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
Domain white list applied to https://github.com/davidonzo/Threat-Intel
Import CrowdStrike Threat Intelligence into your instance of MISP
Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools.
Project to build a set of three docker images containing the components of MISP with self-configuration into a usable state from first start.
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
Add a description, image, and links to the misp topic page so that developers can more easily learn about it.
To associate your repository with the misp topic, visit your repo's landing page and select "manage topics."