OpenSource /Malware Analysis Pipeline System
-
Updated
Jun 9, 2021 - Dockerfile
OpenSource /Malware Analysis Pipeline System
threatnote | Cyber Threat Intelligence Notebook
PowerShell module for creating and managing Sysinternals Sysmon config files.
CTI Reporter is a small flask wiki to help index threat intelligence data
[ARCHIVED] Basic pathways for transforming threat data into threat intelligence: https://fhightower.gitbooks.io/threat-intelligence-investigation-paths/content/
Consumes emails from an imap server, hashes, stores them, and sends a notification
Threat analyses I have done involving phishing, malware, social engineering, etc.
A Cortex Responder for submitting artifacts to CIFv3
A python script that uses TalkBack API to query the website and save the results in Excel file
An informational repo about hunting for adversaries in your IT environment.
Chrome Client for CIF v4 verbose-robot
Threat Intelligence Dashboard Design and its importance
Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
Digital Forensics Virtual File System (dfVFS)
Python 3 library for using the RST Cloud API (threat intelligence)
Following script ingests the Threat Intel Feeds from input url list. Current script can fetch domains and IP Addresses.
Add a description, image, and links to the threatintel topic page so that developers can more easily learn about it.
To associate your repository with the threatintel topic, visit your repo's landing page and select "manage topics."