MISP Workbench Tools
Tools to export data out of the MISP MySQL database and use and abuse them outside of this platform. The initial idea behind this code is to help analysts working on cases after the incident happened and searching for correlation between multiple events. Have a look at each directory and read the documentation for more details: - Export data MySQL into Redis - Fast lookup against MISP data using the hashstore database - Query and interact with groups created from MISP data
FEATURES
ALTERNATIVES
A project sharing malicious URLs used for malware distribution to help protect networks.
A collection of companies that disclose adversary TTPs after being breached, useful for analysis of intrusions.
Scan files with Yara, match findings to VirusTotal comments.
The Cybersecurity and Infrastructure Security Agency (CISA) is a government agency that provides alerts, advisories, and resources to help protect the United States' critical infrastructure from cyber threats.
A collection of Yara rules for the Burp Yara-Scanner extension to identify malicious software on websites.
Amazon GuardDuty is a threat detection service for AWS accounts.
QRadio is a tool/framework designed to consolidate cyber threats intelligence sources.
SecurityTrails API provides access to a vast repository of historical DNS lookups, WHOIS records, hostnames, and domains for cyber forensics and investigations.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.