Maltrail
Maltrail is a malicious traffic detection system utilizing blacklists and heuristic mechanisms.
This reference implementation provides a framework for collecting events from a client machine and performing CAR analytics to detect potential adversary activity. It uses three different systems to work: the analytic system, based on an ELK stack with Apache Spark; the data ingestion system, which collects events from the client machine; and the analytics system, which performs CAR analytics. Please see our webpage for more details: https://www.unfetter.io.
Maltrail is a malicious traffic detection system utilizing blacklists and heuristic mechanisms.
A Python library for handling TAXII v1.x Messages and invoking TAXII Services.
CRITs is an open source malware and threat repository for collaborative threat defense and analysis.
Threat intelligence platform providing real-time threat data and insights.
Repository for detection content with various types of rules and payloads.
A parsing tool for Yara Scan Service's JSON output file to help maximize benefits and automate parsing of Yara Scan Service results.