MISP
CTI platform
A platform for collecting, storing, and sharing structured information about cyber security incidents and threats.
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
5k stars
279 watching
1k forks
Language: PHP
last commit: 2 months ago
Linked from 2 awesome lists
cticybersecurityfraud-detectionfraud-managementfraud-preventioninformation-exchangeinformation-securityinformation-sharingintelligencemalware-analysismispsecuritystixthreat-analysisthreat-huntingthreat-intelthreat-intelligencethreat-intelligence-platformthreat-sharingthreatintel
rshipp/awesome-malware-analysis
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
| misp/misp-galaxy | A platform to integrate and share threat intelligence clusters and vocabularies with MISP threat intelligence platform | 534 |
| misp/misp-modules | Provides an API and extension mechanism for MISP threat intelligence platforms. | 349 |
 thehive-project/thehive | A scalable platform for investigating and managing security incidents, providing features for collaboration, task assignment, and case management. | 3,471 |
| misp/misp-training | Training materials and source code for threat intelligence, information sharing, and MISP software development. | 391 |
| misp/misp-maltego | An integration tool for Maltego to leverage MISP threat intelligence and the MITRE ATT&CK dataset | 171 |
| misp/misp-training-lea | A training program focused on practical information sharing between law enforcement and CSIRT communities using the MISP platform. | 31 |
| misp/misp-workbench | Toolset for analyzing and correlating threat intelligence data from various sources. | 28 |
| misp/misp-rfc | Defines and maintains standards for information exchange in threat intelligence platforms | 47 |
 juju4/ansible-misp | Ansible role for setting up MISP, a malware information sharing platform and threat sharing system | 52 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 149 |
| misp/pymisp | A Python library to access and manipulate data from MISP platforms via their REST API | 448 |
| misp/misp-taxonomies | A Python application that provides a standardized set of classification libraries to tag, classify, and organize security-related information. | 266 |
 opennhp/opennhp | A Zero Trust protocol that leverages resource-hiding and encryption to safeguard servers and data from attackers | 13,520 |
| misp/misp-taxii-server | A tool that integrates with MISP to enable secure information exchange through the Taxii protocol. | 80 |
| misp/misp-warninglists | Provides lists of known indicators to inform users about potential false positives or other information in threat intelligence data | 542 |