Best MISP TAXII Server Alternatives & Competitors in 2026

Cybermerc Aushield Defend

Cyber threat intelligence sharing platform for Australian organizations

CatchProbe ThreatWay

Cyber threat intelligence sharing platform with TAXII/STIX support

Threat Intelligence Platform

Converts unstructured OSINT & darknet signals into structured STIX 2.1 threat intelligence

Anomali Integrator

Automates distribution of threat intel across security infrastructure

Maltiverse

Automated threat intel service with IoC search, feeds, and SIEM/SOAR integrations.

StalkPhish.io

Phishing threat intel platform detecting phishing URLs, kits & brand impersonation.

MISP Project

MISP is an open source threat intelligence platform that enhances threat information sharing and analysis.

Ninja Signal

Enterprise real-time cyber threat intelligence platform.

Cypho

Continuous threat intelligence and exposure management across dark, deep & clear web.

Anomali ThreatStream

Threat intelligence platform aggregating global threat data for detection

EclecticIQ Intelligence Center

Threat intelligence platform for collecting, analyzing, and sharing CTI data

ThreatBook Advanced Threat Intelligence (ATI)

Enterprise threat intelligence platform with APAC focus and adversary tracking

Dragos Neighborhood Keeper

Anonymous ICS threat intel sharing platform for collective defense

Group-IB Threat Intelligence Platform

Enterprise threat intelligence platform for proactive threat detection

iCOUNTER CTOS

Threat intel & TPRM platform detecting adversary intent before exploitation.

Nucleon Cyber AGTI Platform

Adversary-generated threat intelligence platform for attack surface visibility.

n6 (Network Security Incident eXchange)

n6 is a network security incident exchange system that collects, manages, and distributes threat and incident data through REST API and web interfaces for authorized users.

OSTrICa

OSTrICa is an open source plugin-based framework that collects and visualizes threat intelligence data from various sources to help cybersecurity professionals correlate IoCs and enhance their defensive capabilities.

YETI

YETI is a proof-of-concept TAXII implementation that supports Inbox, Poll, and Discovery services for automated cyber threat intelligence indicator exchange.

ThreatCrowd API

A Python library that provides an interface to query ThreatCrowd's API for threat intelligence data including email, IP, domain, and antivirus reports with built-in caching capabilities.

Python IOC Editor v0.9.8

PyIOCe is a Python-based OpenIOC editor that enables security professionals to create, edit, and manage Indicators of Compromise for threat intelligence and incident response operations.

Malware Patrol MCP Server

MCP server connecting LLMs to live threat intelligence via natural language

Seqrite Threat Intel

Real-time threat intelligence platform with STIX/TAXII compliance

Filigran OpenCTI

Open-source threat intelligence platform for organizing and operationalizing CTI

Filigran Threat Management

AI-powered threat management platform for detection, analysis, and response

Check Point Threat Intelligence

Threat intelligence platform providing strategic & tactical threat analysis

CyCraft CyberTotal

Global threat intelligence platform aggregating CTI sources with AI analysis

Hoplite Threat Intelligence

AI-powered threat intelligence platform collecting data from web sources

Abstract Intel Gallery

Threat intel enrichment platform that correlates events with IOCs and actors

Houdin.io

AI Cyber Threat Intelligence

CYJAX Cyber Threat Intelligence

Cyber threat intelligence platform providing actionable insights

Cyware Quarterback AI

AI-powered threat intelligence platform for real-time threat intel management

Bitsight Cybersixgill

Cyber threat intelligence platform for monitoring threats, TTPs, and IOCs

SOC Radar Cyber Threat Intelligence

SOC Radar Cyber Threat Intelligence is a comprehensive platform that provides dark web monitoring, vulnerability intelligence, and threat actor analysis to help organizations proactively defend against cyber threats.

Keepnet Threat Sharing

P2P threat intel sharing platform for collaborative defense communities

VicOne xAurient

Automotive-focused threat intelligence platform with dark web monitoring

Netcraft Phishing Kit Analysis

Analyzes phishing kits to extract IOCs, attacker infrastructure & tactics

HEAL Security

Healthcare-specific cyber threat intelligence & situational awareness platform.

Base Operations Street-level Threat Intel

AI-powered platform for street-level physical threat intel for corp security.

libtaxii

A Python library for handling TAXII v1.x messages and services to enable automated threat intelligence sharing and indicator exchange.

ThreatConnect Polarity Community Edition

Free contextual federated search tool for threat intelligence enrichment

ThreatIngestor

An extendable tool to extract and aggregate IOCs from threat feeds, integrates with ThreatKB and MISP.

ThreatNote

ThreatNote is a threat intelligence platform that provides real-time updates on emerging cybersecurity threats, vulnerabilities, and attack vectors to help organizations enhance their security posture.

ActorTrackr

ActorTrackr is an open source web application for storing, searching, and linking threat actor intelligence data from public repositories and user contributions.

Poortego

A neo4j-based data management platform with command-line interface for analyzing cyber threat indicators and other data points through graph database traversal.

Forager

Forager is a threat intelligence tool that simplifies the retrieval, storage, and maintenance of threat data with a user-friendly interface and support for various data sources.

nyx Threat Intelligence artifact distribution

nyx is a threat intelligence artifact distribution system that facilitates the sharing of threat intelligence indicators from various sources to defensive security systems with configurable criticality levels.