ThreatIngestor
MISP-QRadar-Integration
ThreatIngestor | MISP-QRadar-Integration | |
---|---|---|
1 | 2 | |
792 | 36 | |
2.7% | - | |
7.6 | 0.0 | |
4 months ago | about 2 years ago | |
Python | Python | |
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ThreatIngestor
MISP-QRadar-Integration
-
Problem with execute MISP integration
Did you see this already? https://github.com/karthikkbala/MISP-QRadar-Integration/issues/5
What are some alternatives?
C2IntelFeeds - Automatically created C2 Feeds
misp-galaxy - Clusters and elements to attach to MISP events or attributes (like threat actors)
sysmon-config - Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
PyMISP - Python library using the MISP Rest API
YaraHunter - 🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍
misp-warninglists - Warning lists to inform users of MISP about potential false-positives or other information in indicators
harpoon
iocextract - Defanged Indicator of Compromise (IOC) Extractor.
cowrie - Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
StalkPhish - StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
threatbus - 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.