MISP Project Logo

MISP Project

0
Free
Visit Website

MISP, the open source threat intelligence platform, facilitates the sharing, storage, correlation, and analysis of threat intelligence data, helping combat targeted attacks, financial fraud, and counter-terrorism. It supports automated exports for IDS or SIEM in STIX or OpenIOC formats and synchronizes with other MISPs, enhancing the utility of stored data.

FEATURES

ALTERNATIVES

Home for rules used by Elastic Security with code for unit testing, Kibana integration, and Red Team Automation.

A tracker that detects and logs SYN packets with a specific signature generated by the Mirai malware, providing real-time information on Mirai-based campaigns.

Automated framework for collecting and processing samples from VirusTotal with YARA rule integration.

Deception based detection techniques with MITRE ATT&CK mapping and Honey Resources.

RogueApps is a collaborative repository documenting TTPs of malicious OIDC/OAuth 2.0 applications for cybersecurity research and awareness.

Automatically create yara rules based on images embedded in office documents.

A repository to aid Windows threat hunters in looking for common artifacts.

Python-based client for IBM XForce Exchange with an improved version available.