tiq-test Logo

tiq-test

0
Free
Visit Website

Threat Intelligence Quotient Test (tiq-test) is a tool for dataviz and statistical analysis of threat intelligence indicator feeds. It was presented in various cybersecurity conferences like BSides LV 2014, DEF CON 22, OpenDNS S4 IRespond, HushCon 2014 for measuring the IQ of threat intelligence feeds. It also includes tests for Aging and Uniqueness presented at nbtcon 2014 and SANS CTI Summit 2015. The data repository and R Markdown sources for these presentations can be found on GitHub. Copyright 2014-2015 (c) MLSec.

FEATURES

ALTERNATIVES

A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.

A list of most queried domains based on passive DNS usage across the Umbrella global network.

A mapping tool that correlates MITRE ATT&CK techniques with atomic tests and detection rules to analyze security detection coverage.

Real-time monitoring tool for newly issued SSL certificates.

An Open Source solution for management of Threat Intelligence at scale, integrating multiple analyzers and malware analysis tools.

Generate Bro intel files from pdf or html reports.

Repository containing MITRE ATT&CK and CAPEC datasets in STIX 2.0 for cybersecurity threat modeling.

Cisco Umbrella is a cloud security platform that offers protection against threats on the internet by blocking malicious activity.