ThreatIngestor
Threat Scanner
Extracts and aggregates threat intelligence from various sources
Extract and aggregate threat intelligence.
836 stars
41 watching
137 forks
Language: Python
last commit: about 1 year ago
Linked from 5 awesome lists
dfirfraud-detectionindicators-of-compromiseintelligence-gatheringiocmalware-researchmisposintsecurity-toolssoarthreat-analysisthreat-feedsthreat-huntingthreat-intelligencethreat-intelligence-platformthreat-sharingthreatintelyara
rshipp/awesome-malware-analysis
hslatman/awesome-threat-intelligence
fabacab/awesome-cybersecurity-blueteam
sroberts/awesome-iocsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 thehive-project/cortex-analyzers | Develops and stores Cortex analyzers & responders for incident response and threat intelligence. | 437 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 149 |
 yelp/threat_intel | Provides APIs for threat intelligence data from Umbrella Investigate and other sources | 275 |
 a3sal0n/cyberthreathunting | A collection of tools and resources for threat hunters to identify and respond to cyber threats. | 861 |
 volexity/threat-intel | A repository of threat intelligence data from public Volexity blog posts. | 342 |
 jpsenior/threataggregator | Automates aggregation of security threat data from various online sources | 80 |
 opensourcesec/forager | A tool for gathering and managing threat intelligence data from various feeds. | 171 |
 jheise/threatcrowd_api | Provides an API wrapper around ThreatCrowd's threat intelligence service | 9 |
 fhightower/ioc-finder | An interactive tool for extracting and parsing threat intelligence data from text | 159 |
 misp/misp-galaxy | A platform to integrate and share threat intelligence clusters and vocabularies with MISP threat intelligence platform | 534 |
 threatexpress/domainhunter | Tools for identifying suitable domains for malicious activities | 1,554 |
 kevthehermit/pastehunter | Automates scanning of publicly hosted pasted data against Yara rules to identify potential security or research threats. | 1,069 |
 threathuntingproject/threathunting | An informational repository providing resources and knowledge for detecting adversaries in IT environments. | 1,726 |
 intelowlproject/intelowl | A tool for managing and analyzing threat intelligence data at scale. | 3,888 |
 greynoise-intelligence/pygreynoise | An abstract Python library providing a command-line interface to interact with the GreyNoise threat intelligence service | 152 |