MISP-QRadar-Integration
misp-galaxy
MISP-QRadar-Integration | misp-galaxy | |
---|---|---|
2 | 3 | |
36 | 481 | |
- | 1.2% | |
0.0 | 9.8 | |
almost 2 years ago | 5 days ago | |
Python | Python | |
- | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
MISP-QRadar-Integration
-
Problem with execute MISP integration
Did you see this already? https://github.com/karthikkbala/MISP-QRadar-Integration/issues/5
misp-galaxy
-
Foreign Travel Risks
MISP Threat Actor Galaxy
-
Profiling and Tracking Threat Actors
MISP threat actors galaxy may be of interest: https://github.com/MISP/misp-galaxy
-
Learning about apt groups
https://attack.mitre.org/groups/ this is a solid source. If you want to see the MISP list of threat actors from their service you can look here https://github.com/MISP/misp-galaxy/blob/main/clusters/threat-actor.json . The painful thing about this topic is every security vendor has a different naming convention for the threat actors in question.
What are some alternatives?
PyMISP - Python library using the MISP Rest API
ThePhish - ThePhish: an automated phishing email analysis tool
misp-warninglists - Warning lists to inform users of MISP about potential false-positives or other information in indicators
Watcher - Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
iocextract - Defanged Indicator of Compromise (IOC) Extractor.
threatbus - 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
MISP - MISP (core software) - Open Source Threat Intelligence and Sharing Platform
ThreatIngestor - Extract and aggregate threat intelligence.
OTX-Suricata - The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX account.