PyIntelOwl
Robust Python SDK and Command Line Client for interacting with IntelOwl's API.
MalPipe is a modular malware (and indicator) collection and processing framework designed to pull malware, domains, URLs, and IP addresses from multiple feeds, enrich the collected data, and export the results. Supported feeds include VirusTotal, MalShare, BambenekFeeds, FeodoBlockList, Malc0deIPList, NoThinkIPFeeds, OpenPhishURLs, and TorNodes. To get started, install the required Python libraries by running 'pip install -r requirements.txt' and configure the feeds.
Robust Python SDK and Command Line Client for interacting with IntelOwl's API.
A community-driven list of sample security analytics for auditing cloud usage and detecting threats in Google Cloud.
A comprehensive and unrestricted dataset of security incidents for research and decision-making
Repository for detection content with various types of rules and payloads.
Threat hunting tool leveraging Windows events for identifying outliers and suspicious behavior.
Hippocampe is a threat feed aggregator with configurable confidence levels and a Hipposcore for determining maliciousness.