• 教學 30.08.2017

    建立威脅感知開源工具

     

     

    MISP – Malware Information Sharing Platform

    www.misp-project.org/

     

    www.misp-project.org/

     

    CRITS Collaborative Research Into Threats

    https://crits.github.io/

    https://www.github.com/crits

    Source: https://crits.github.io/
    Requirements: Docker, MongoDB
    Docker Imagehttps://hub.docker.com/r/remnux/crits/

     

    YeTi

    https://yeti-platform.github.io/

    Yeti Analytics

     

    FIR (Fast Incident Response)

    https://github.com/certsocietegenerale/FIR

    dashboard

     

    Malcom – Malware Communications Analyzer

    https://github.com/tomchop/malcom

     

    Related image

     

    Collective Intelligence Framework

    http://csirtgadgets.org/

    https://github.com/csirtgadgets/massive-octo-spice/wiki/What-is-the-Collective-Intelligence-Framework%3F

    cif_overview.png

     

    GRR Rapid Response

    https://github.com/google/grr

    Screenshot from 2013-11-18 18-36-13.png

     

    OSQuery

    https://osquery.io/

     

     

    MIG Mozilla InvestiGator

    https://github.com/mozilla/mig

    https://github.com/mozilla/mig/blob/master/doc/cheatsheet.rst

     

     

     

     

     

     

     

     

    參考

    www.slideshare.net/OWASPdelhi/cyber-threat-intelligence-and-incident-response

    Posted by Tony @ 8:18 am

  • Leave a Reply

    Your email address will not be published.