A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.
ONYPHE is a cyber defense search engine that scans the internet and dark web to discover exposed assets, providing a comprehensive asset inventory and real-time monitoring to identify vulnerabilities and potential risks. It uses a domain name-based approach and key/value pairs to build an inventory, and offers a query language to receive alerts on exposed assets. With its massive database of DNS entries, banners, and port scans, ONYPHE helps organizations avoid risks, cut ransomware risks, and identify critical vulnerabilities, enabling proactive cyber defense.
A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.
Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.
Pulsedive is a threat intelligence platform that provides frictionless threat intelligence for growing teams, offering features such as indicator enrichment, threat research, and API integration.
HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.
A Python library for handling TAXII v1.x Messages and invoking TAXII Services.
Container of 200 Windows EVTX samples for testing detection scripts and training on DFIR.