MISP-tools
caracara
MISP-tools | caracara | |
---|---|---|
2 | 1 | |
32 | 33 | |
- | - | |
6.0 | 7.4 | |
10 days ago | 9 days ago | |
Python | Python | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
MISP-tools
-
Ingesting IOCs in to CS from MISP
I'd start with intel_client.py (most CS interactions happen here) and indicators.py (the logic for the handling of indicators, a lot of this is PyMISP-specific but it will help you identify data elements you want to bring over).
caracara
-
Falcon-Toolkit
Falcon Toolkit is an all in one toolkit designed to make your Falcon life much easier. It is built on top of Caracara.
What are some alternatives?
falconpy - The CrowdStrike Falcon SDK for Python
Visual-Music - This is a short program that takes the input from your microphone and uses OpenGL to draw a live colourful pattern.
PyMISP - Python library using the MISP Rest API
BulkStrike - BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.
threatbus - 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
0x5F3759DF-in-Python3-FastInverseSquareRoot - The magic number 0x5F3759DF in Python3 Fast Inverse SquareRoot
falcon-query-assets - Welcome to the Falcon Query Assets GitHub page.
aioredis - asyncio (PEP 3156) Redis support
prisma-client-py - Prisma Client Python is an auto-generated and fully type-safe database client designed for ease of use
Falcon-Toolkit - Unleash the power of the Falcon Platform at the CLI