建立威脅感知開源工具

建立威脅感知開源工具

MISP – Malware Information Sharing Platform

www.misp-project.org/

Related image

 

MISP 2.4 overview

 

 

CRITS Collaborative Research Into Threats

https://crits.github.io/

https://www.github.com/crits

Source: https://crits.github.io/
Requirements: Docker, MongoDB
Docker Imagehttps://hub.docker.com/r/remnux/crits/

 

YeTi

https://yeti-platform.github.io/

Yeti Analytics

 

FIR (Fast Incident Response)

https://github.com/certsocietegenerale/FIR

dashboard

 

Malcom – Malware Communications Analyzer

https://github.com/tomchop/malcom

 

Related image

 

Collective Intelligence Framework

http://csirtgadgets.org/

https://github.com/csirtgadgets/massive-octo-spice/wiki/What-is-the-Collective-Intelligence-Framework%3F

cif_overview.png

 

GRR Rapid Response

https://github.com/google/grr

Screenshot from 2013-11-18 18-36-13.png

 

OSQuery

https://osquery.io/

 

 

MIG Mozilla InvestiGator

https://github.com/mozilla/mig

https://github.com/mozilla/mig/blob/master/doc/cheatsheet.rst

 

 

 

 

 

 

 

 

參考

www.slideshare.net/OWASPdelhi/cyber-threat-intelligence-and-incident-response

Leave a Reply

Your email address will not be published.