bro-intel-generator

0 (0)

Script for generating Bro intel files from pdf or html reports. Dependencies: poppler-utils, html2text. Usage: Download reports in html or pdf format, then feed them to the tool. Example: ./intel_generator.sh -f apt_report.pdf -p. Note: Verify indicators extracted before using in production. Supports domains, IPs, and hash indicators. Exclude specific file extensions using domain_exclude variable. Install generated intel files in Bro by copying the intel directory to /usr/local/bro/share/bro/.

Threat Management

Free

bro pdf report

ALTERNATIVES

threat_note

0 (0)

A comprehensive Threat Intelligence Program Management Solution for managing the entire CTI lifecycle.

Threat Management

Free

threat-intelligence cti threat-hunting

Sentinel ATT&CK

0 (0)

A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel

Threat Management

Free

threat-hunting mitre-attack sysmon

AT&T Alien Labs Open Threat Exchange

0 (0)

A platform for accessing threat intelligence and collaborating on cyber threats.

Threat Management

Free

cybersecurity threat-intelligence cyber-threats collaboration security-information-sharing

Hunt-Detect-Prevent

0 (0)

Lists of sources and utilities to hunt, detect, and prevent evildoers.

Threat Management

Free

powershell threat-hunting active-directory

gaussrf

0 (0)

A tool for identifying potential security threats by fetching known URLs and filtering out URLs with open redirection or SSRF parameters.

Threat Management

Free

ssrf threat-intelligence security-threats url-filtering

Malware Patrol

0 (0)

Malware Patrol offers a range of threat intelligence solutions, including enterprise data feeds, DNS firewall, phishing threat intelligence, and small business protection.

Threat Management

Commercial

command-and-control ioc threat-intelligence malware ransomware phishing