Koen Van Impe's repositories
misp-tip-of-the-week
A collection of tips for using MISP.
OPML-Security-Feeds
A list of OPML Security Feeds
misp2sentinel
MISP to Sentinel integration
CSIRT-Jump-Bag
CSIRT Jump Bag
misp-scraper
A web scraper to create MISP events and reports
security-screening
Security screening scripts
misp_to_zeek
Export MISP indicators to Zeek intel framework
ics-csirt-website
Website of https://www.ics-csirt.io/
misp-modules
Modules for expansion services, import and export in MISP
awesome-chatgpt-prompts
This repo includes ChatGPT prompt curation to use ChatGPT better.
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
awesome-forensics
A curated list of awesome forensic analysis tools and resources
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
intel-integrations
Examples of how to access/integrate RH-ISAC threat intel
misp-docker
MISP Docker (XME edition)
misp-taxonomies
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
misp-website
MISP website (hugo-based)
parsedmarc
A Python package and CLI for parsing aggregate and forensic DMARC reports
unblob
Extract files from any kind of container formats