ThreatAggregator
Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc. feeds.py contains a dictionary list of various feeds to use. config.py contains a small list of configuration settings for syslog purposes. Usage: Simply run threataggregator.py with no arguments. Application will grab HTTP-based feeds from feeds.py, and send syslog packets to the target specified in config.py. Standard JSON-formatted output will also be displayed stdout from threataggregator.py.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Python-based client for IBM XForce Exchange with an improved version available.
A cybersecurity concept categorizing indicators of compromise based on their level of difficulty for threat actors to change.
Cisco Umbrella is a cloud security platform that offers protection against threats on the internet by blocking malicious activity.
A python3 application for querying sites hosting publicly pasted data and scanning for sensitive information.
Repository containing IoCs related to Volexity's threat intelligence blog posts and tools.
Repository for detection content with various types of rules and payloads.
Automated framework for collecting and processing samples from VirusTotal with YARA rule integration.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.