thehive

There are 2 repositories under thehive topic.

TheHive
TheHive-Project / TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
agplv3 analyzer api cortex dfir digital-forensics free incident-management incident-response incident-response-tooling investigations iocs misp open-source orchestration platform rest scala security-incidents thehive
Language:Scala 3452
Cortex
TheHive-Project / Cortex
Cortex: a Powerful Observable Analysis and Active Response Engine
response dfir analysis analyzer thehive engine scala python rest api security-incidents digital-forensics iocs observable free free-software open-source incident-response cyber-threat-intelligence cortex
Language:Scala 1347
ThePhish
emalderson / ThePhish
ThePhish: an automated phishing email analysis tool
attack cyberdefense cybersecurity detection digital-forensics email free incident-response indicators-of-compromise malware misp phishing phishing-detection python script thehive thehive4 thehive4py threat-intelligence webapp
Language:Python 1159
Watcher
thalesgroup-cert / Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
cybersecurity threat-hunting django reactjs rss-bridge misp thehive security incident-response threat-detection threat-intelligence nltk watcher certificate-transparency certstream osint osint-python webapp monitoring phishing
Language:Python 865
Patrowl / PatrowlManager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
api automation incident-response ioc orchestration patrowl scans secops security-automation security-scanner security-tools thehive threat-hunting threat-intelligence vulnerabilities vulnerability-detection vulnerability-management vulnerability-scanners
Language:HTML 625
atc-react
atc-project / atc-react
A knowledge base of actionable Incident Response techniques
incident-response response-playbooks dfir thehive mitre-attack amitt
Language:Python 614
Cortex-Analyzers
TheHive-Project / Cortex-Analyzers
Cortex Analyzers Repository
thehive analyzer cortex free free-software open-source observable ioc json incident-response digital-forensics dfir cyber-threat-intelligence python enrichment
Language:Python 435
V1D1AN / S1EM
This project is a SIEM with SIRP and Threat Intel, all in one.
kibana elasticsearch logstash filebeat suricata zeek opencti misp malware sigma thehive docker cortex arkime mwdb n8n zircolite yara velociraptor
Language:Shell 412
TheHiveDocs
TheHive-Project / TheHiveDocs
Documentation of TheHive
misp security-incidents iocs thehive cortex administration-guide analyzer rest api incident-response digital-forensics analyst dfir free free-software documentation open-source platform thehive-project
393
Patrowl / PatrowlEngines
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
automation orchestration secops patrowl incident-response api security-tools vulnerability-management security-automation security-scanner vulnerability-scanners vulnerability-detection threat-intelligence threat-hunting ioc thehive cortex
Language:Python 244
TheHive-Project / TheHive4py
Python API Client for TheHive
api api-client dfir digital-forensics free free-software incident-response open-source python thehive
Language:Python 218
mthc
pe3zx / mthc
All-in-one bundle of MISP, TheHive and Cortex
misp thehive-project cortex threat-intelligence threat-hunting incident-response incident-management ioc-framework dfir thehive
169
TheHive-Project / Hippocampe
Threat Feed Aggregation, Made Easy
aggregator feed free free-software intel open-source python thehive threat-score threatintel
Language:Python 166
Patrowl / PatrowlDocs
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
api automation cortex incident-response ioc orchestration patrowl secops security-automation security-scanner security-tools thehive threat-hunting threat-intelligence vulnerability-detection vulnerability-management vulnerability-scanners
Language:HTML 147
KaanSK / shomon
Shodan Monitoring integration for TheHive.
golang incident-management incident-response incident-response-tooling security security-tools shodan thehive
Language:Go 129
Docker-Templates
TheHive-Project / Docker-Templates
Docker configurations for TheHive, Cortex and 3rd party tools
cortex deployment devops dfir docker incident-response thehive
Language:Shell 113
TheHive-Project / Synapse
Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
agplv3 alert analyst api dfir free incident-response investigations microsoft-exchange office365 open-source orchestration python3 qradar qradar-offense rest security-incidents thehive thehive-project workflow
Language:Python 71
CERT-Polska / training-materials
training-materials infosec csirt cert training thehive misp moloch intelmq malware incident-response investigation
Language:PHP 50
TheHive-Project / Zerofox2TH
Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
agplv3 alert alerts dfir free-software incident-response integration investigations ioc open-source platform rest sirp social-media social-network thehive thehive4py zerofox
Language:Python 36
TheHive-Project / DigitalShadows2TH
DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
agplv3 alert alerts dfir digitalshadows free free-software incident-response integration investigations iocs open-source platform rest rest-api security-tools sirp thehive threat-intelligence threatintel
Language:Python 35
Nclose-ZA / elastalert_hive_alerter
This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
thehive4py thehive elastalert
Language:Python 27
jstnk9 / TIBER-Cases
TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to TIBER-EU processes.
blueteam misp purpleteam redteam thehive thehive-project tiber-eu
Language:Python 26
TheHive-Project / TheHiveHooks
This is a python tool aiming to make using TheHive webhooks easier.
thehive dfir python
Language:Python 26
jordisk / TheHive2Sigma
Python script to automatically create sigma rules from The hive observables
python thehive
Language:Python 23
ilyaglow / dockerfiles
🌊 Dockerfiles for apps I use. Also take a look at https://github.com/security-dockerfiles
gopkg echoip jq quicksand wfuzz dockerfile ysoserial tor squid fi6s cve-2018-15473 goproxy socksproxy misp whatweb thehive cortex manalyze
Language:Dockerfile 22
TheHive-Resources
TheHive-Project / TheHive-Resources
A repository to share contributions related to TheHive Project
cortex dfir incident-response thehive thehive-project thehive4py
Language:C++ 22
CERT-Bund / misp-warninglists-analyzer
Checks observables/ioc in TheHive/Cortex against the MISP warningslists
dfir thehive cortex misp incident response
Language:Python 14
ag-michael / EmailScanner
EmailScanner is an integration application in python that uses `exchangelib` to process mail items in Microsoft exchange.
python exchange exchangelib fireeye falcon active-directory ldap elasticsearch incident-response thehive misp cuckoo-sandbox integration orchestration phishing correlation
Language:Python 12
UNIT777 / Email2TheHive
This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
thehive thehive4py
Language:Python 12
zsfell / HiveLeak
Resources Hive recent mode, geo, data, texture pack, animation geo, and logo.
hive leak minecraft pmmp pocketmine pocketmine-plugins resources server thehive thehive-project
11
ag-michael / pyfalcon
Crowdstrike Falcon streaming api client in python
crowdstrike falcon python thehive thehive-project
Language:Python 9
TheHive-Project / TheHive4go
Go API client for TheHive
api api-client dfir digital-forensics free free-software golang incident-response open-source thehive
8
KaanSK / hivelime
Create TheHive alerts from Sublime detections effortlessly!
incident-response phishing phishing-detection thehive thehive-project thehive5 automation golang google-workspace imap m365 mail secops smtp email-security sublime-security threat-hunting
Language:Go 6
Gxorge / TheHerobrine-OG
My remake of HiveMC's "The Herobrine!"
herobrine hivemc remake theherobrine thehive
Language:Java 5
Hestat / ClamAV-CortexAnalyzer
Analyzer for TheHive Cortex Soc platform. Allows you to run observables against default and custom ClamAV rules.
clamav cortex dfir thehive yara-integrated
Language:Python 5
StrangeBeeCorp / TheHive-feedback
TheHive 5 feedback repository
case-management incident-response sirp thehive
5

thehive

TheHive-Project / TheHive

TheHive-Project / Cortex

emalderson / ThePhish

thalesgroup-cert / Watcher

Patrowl / PatrowlManager

atc-project / atc-react

TheHive-Project / Cortex-Analyzers

V1D1AN / S1EM

TheHive-Project / TheHiveDocs

Patrowl / PatrowlEngines

TheHive-Project / TheHive4py

pe3zx / mthc

TheHive-Project / Hippocampe

Patrowl / PatrowlDocs

KaanSK / shomon

TheHive-Project / Docker-Templates

TheHive-Project / Synapse

CERT-Polska / training-materials

TheHive-Project / Zerofox2TH

TheHive-Project / DigitalShadows2TH

Nclose-ZA / elastalert_hive_alerter

jstnk9 / TIBER-Cases

TheHive-Project / TheHiveHooks

jordisk / TheHive2Sigma

ilyaglow / dockerfiles

TheHive-Project / TheHive-Resources

CERT-Bund / misp-warninglists-analyzer

ag-michael / EmailScanner

UNIT777 / Email2TheHive

zsfell / HiveLeak

ag-michael / pyfalcon

TheHive-Project / TheHive4go

KaanSK / hivelime

Gxorge / TheHerobrine-OG

Hestat / ClamAV-CortexAnalyzer

StrangeBeeCorp / TheHive-feedback