Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
-
Updated
May 24, 2024 - HTML
Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
OpenCTI Connectors
Security lists for SOC detections
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Python library using the MISP Rest API
Clusters and elements to attach to MISP events or attributes (like threat actors)
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
Modules for expansion services, enrichment, import and export in MISP and other tools.
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
Domain white list applied to https://github.com/davidonzo/Threat-Intel
Import CrowdStrike Threat Intelligence into your instance of MISP
Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other security tools.
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Project to build a set of three docker images containing the components of MISP with self-configuration into a usable state from first start.
Definition, description and relationship types of MISP objects
Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
Add a description, image, and links to the misp topic page so that developers can more easily learn about it.
To associate your repository with the misp topic, visit your repo's landing page and select "manage topics."