Hippocampe is a threat feed aggregator that aggregates feeds from the Internet in an Elasticsearch cluster. It provides a REST API for easy querying, allows analysts to configure confidence levels for feeds, and generates a Hipposcore to aid in determining the maliciousness of observables. It is open source under the AGPL license and integrates well with Cortex and TheHive.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
OpenIOC editor for building and manipulating threat intelligence data with support for various systems.
Provides advanced external threat intelligence to help organizations proactively identify and mitigate potential security threats.
Yara rule generator using VirusTotal code similarity feature code-similar-to.
A visualization tool for threat analysis that organizes APT campaign information and visualizes relations of IOC.
An extendable tool to extract and aggregate IOCs from threat feeds, integrates with ThreatKB and MISP.
Sigma is a generic and open signature format for SIEM systems and other security tools to detect and respond to threats.