|28 days ago||6 days ago|
|GNU General Public License v3.0 only||GNU Affero General Public License v3.0|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Malware Information Sharing Platform (MISP)
1 project | reddit.com/r/Neura | 27 Jun 20221 project | reddit.com/r/MojoVisionAVR | 27 Jun 2022
Threat Intelligence at your org
1 project | reddit.com/r/AskNetsec | 13 May 2022
Start out with this https://www.misp-project.org/ it's open source and is widely used.
Stix2 import Errors on script install and ova import
1 project | reddit.com/r/MISP | 3 May 2022
Що таке платформа MISP і як нею користуватися?
1 project | dev.to | 30 Apr 2022
FortiGuard DNS Filtering fails us again
1 project | reddit.com/r/fortinet | 25 Mar 2022
I wasn't able to find out a whole lot about digitalside by itself, other than their threat feed is one of the default feeds on misp-project, so I figure if they trust it, I can (reasonably) trust it.
Knowledge base for CTI
1 project | reddit.com/r/selfhosted | 21 Mar 2022
MISP – open-source threat intelligence and sharing platform
1 project | reddit.com/r/CKsTechNews | 20 Feb 20221 project | news.ycombinator.com | 20 Feb 2022
Basic External IP investigating?
1 project | reddit.com/r/cybersecurity | 25 Nov 2021
One thing you can do is run the IPs through various (opensource) threat feeds to see if the IPs have been observed by others in the past. AlienVault OTX and MISP are two free options that you could utilize.
What are some alternatives?
opencti - Open Cyber Threat Intelligence Platform
crits - CRITs - Collaborative Research Into Threats
intelmq - IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
SplunkDashboards - Collection of Dashboards for Threat Hunting and more!
awesome-malware-analysis - Defund the Police.
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
Go-MISPFeedGenerator - Golang implementation of PyMISP-feedgenerator
elasticsearch-mapper-attachments - Mapper Attachments Type plugin for Elasticsearch
MOSP - A collaborative platform for creating, editing and sharing JSON objects.
sysmon-config - Sysmon configuration file template with default high-quality event tracing
signature-base - Signature base for my scanner tools
eml_analyzer - EML analyzer is an application to analyze the EML file