Hippocampe Logo

Hippocampe

0
Free
Visit Website

Hippocampe is a threat feed aggregator that aggregates feeds from the Internet in an Elasticsearch cluster. It provides a REST API for easy querying, allows analysts to configure confidence levels for feeds, and generates a Hipposcore to aid in determining the maliciousness of observables. It is open source under the AGPL license and integrates well with Cortex and TheHive.

FEATURES

ALTERNATIVES

Scan files with Yara, match findings to VirusTotal comments.

Platform for the latest threat intelligence information

Acapulco is a Splunk application that automatically generates meta-events from hpfeeds channels and visualizes them using D3.js.

A tracker that detects and logs SYN packets with a specific signature generated by the Mirai malware, providing real-time information on Mirai-based campaigns.

Repository of Yara signatures for detecting targeted attacks on civil society organizations

Provides advanced external threat intelligence to help organizations proactively identify and mitigate potential security threats.

A collection of Yara rules for the Burp Yara-Scanner extension to identify malicious software on websites.

Repository with projects for photo and video hashing, content moderation, and signal exchange.