Set of frameworks and platforms added

This commit is contained in:
Herman Slatman 2015-12-29 10:36:51 +01:00
parent 19cef9a66f
commit d3e71f46e7

View File

@ -33,6 +33,81 @@ A curated list of Awesome Threat Intelligence resources
</tr> </tr>
</table> </table>
## Frameworks ## Frameworks and Platforms
<table>
<tr>
<td>
<a href="https://crits.github.io/" target="_blank">CRITS</a>
</td>
<td>
CRITS is a platform that provides analysts with the means to conduct collaborative research into malware and threats. It plugs into a centralized intelligence data repository, but can also be used as a private instance.
</td>
</tr>
<tr>
<td>
<a href="http://django-mantis.readthedocs.org/en/latest/" target="_blank">MANTIS</a>
</td>
<td>
The Model-based Analysis of Threat Intelligence Sources (MANTIS) Cyber Threat Intelligence Management Framework supports the management of cyber threat intelligence expressed in various standard languages, like STIX and CybOX. It is *not* ready for large-scale production though.
</td>
</tr>
<tr>
<td>
<a href="http://csirtgadgets.org/collective-intelligence-framework" target="_blank">CIF</a>
</td>
<td>
The Collective Intelligence Framework (CIF) allows you to combine known malicious threat information from many sources and use that information for IR, detection and mitigation. Code available on [GitHub](https://github.com/csirtgadgets/massive-octo-spice).
</td>
</tr>
<tr>
<td>
<a href="http://www.misp-project.org/" target="_blank">MISP</a>
</td>
<td>
The Malware Information Sharing Platform (MISP) is an open source software solution for collecting, storing, distributing and sharing cyber security indicators and malware analysis.
</td>
</tr>
<tr>
<td>
<a href="http://www.openioc.org/" target="_blank">OpenIOC</a>
</td>
<td>
OpenIOC is an open framework for sharing threat intelligence. It is designed to exchange threat information both internally and externally in a machine-digestible format.
</td>
</tr>
<tr>
<td>
<a href="http://www.openioc.org/" target="_blank">OTX - Open Threat Exchange</a>
</td>
<td>
AlienVault Open Threat Exchange (OTX) provides open access to a global community of threat researchers and security professionals. It delivers community-generated threat data, enables collaborative research, and automates the process of updating your security infrastructure with threat data from any source.
</td>
</tr>
<tr>
<td>
<a href="https://github.com/tripwire/tardis" target="_blank">TARDIS</a>
</td>
<td>
The Threat Analysis, Reconnaissance, and Data Intelligence System (TARDIS) is an open source framework for performing historical searches using attack signatures.
</td>
</tr>
<tr>
<td>
<a href="https://developers.facebook.com/docs/threat-exchange/" target="_blank">ThreatExchange</a>
</td>
<td>
Facebook created ThreatExchange so that participating organizations can share threat data using a convenient, structured, and easy-to-use API that provides privacy controls to enable sharing with only desired groups. This project is still in *beta*.
</td>
</tr>
<tr>
<td>
<a href="https://exchange.xforce.ibmcloud.com/" target="_blank">XFE - X-Force Exchange</a>
</td>
<td>
The X-Force Exhange (XFE) by IBM XFE is a free SaaS product that you can use to search for threat intelligence information, collect your findings, and share your insights with other members of the XFE community.
</td>
</tr>
</table>
## Research ## Research