OpenSource /Malware Analysis Pipeline System
-
Updated
Jun 9, 2021 - Dockerfile
OpenSource /Malware Analysis Pipeline System
threatnote | Cyber Threat Intelligence Notebook
PowerShell module for creating and managing Sysinternals Sysmon config files.
CTI Reporter is a small flask wiki to help index threat intelligence data
Threat analyses I have done involving phishing, malware, social engineering, etc.
[ARCHIVED] Basic pathways for transforming threat data into threat intelligence: https://fhightower.gitbooks.io/threat-intelligence-investigation-paths/content/
Consumes emails from an imap server, hashes, stores them, and sends a notification
A python bot that uses the Pyrogram API Framework to take a list of Telegram channels and groups and joins them.
Threat Intelligence Dashboard Design and its importance
An informational repo about hunting for adversaries in your IT environment.
Chrome Client for CIF v4 verbose-robot
A Cortex Responder for submitting artifacts to CIFv3
A python script that uses TalkBack API to query the website and save the results in Excel file
Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
Following script ingests the Threat Intel Feeds from input url list. Current script can fetch domains and IP Addresses.
GUI to scrape CVEs from a URL and formats them to be put into Tenable
Add a description, image, and links to the threatintel topic page so that developers can more easily learn about it.
To associate your repository with the threatintel topic, visit your repo's landing page and select "manage topics."