Watcher
misp-galaxy
Watcher | misp-galaxy | |
---|---|---|
3 | 3 | |
797 | 481 | |
0.5% | 1.2% | |
2.4 | 9.8 | |
7 days ago | 6 days ago | |
Python | Python | |
GNU Affero General Public License v3.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Watcher
- GitHub - Felix83000/Watcher: Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
- Watcher - Open Source Cybersecurity Threat Hunting Platform
- Watcher - Open Source Cybersecurity Threat Hunting Platform | Watcher is a Django & React JS automated platform for discovering new potentially cybersecurity threats targeting your organisation. It should be used on webservers and available on Docker.
misp-galaxy
-
Foreign Travel Risks
MISP Threat Actor Galaxy
-
Profiling and Tracking Threat Actors
MISP threat actors galaxy may be of interest: https://github.com/MISP/misp-galaxy
-
Learning about apt groups
https://attack.mitre.org/groups/ this is a solid source. If you want to see the MISP list of threat actors from their service you can look here https://github.com/MISP/misp-galaxy/blob/main/clusters/threat-actor.json . The painful thing about this topic is every security vendor has a different naming convention for the threat actors in question.
What are some alternatives?
MISP - MISP (core software) - Open Source Threat Intelligence and Sharing Platform
MISP-QRadar-Integration - The Project can be used to integrate QRadar with MISP Threat Sharing Platform
searx-instances - SearXNG instances list
ThePhish - ThePhish: an automated phishing email analysis tool
dnstwist - Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
threatbus - 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
evtx-hunter - evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
misp-warninglists - Warning lists to inform users of MISP about potential false-positives or other information in indicators
django-react-templatetags - A quick way to add React components to your Django templates.
OTX-Suricata - The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.