ThePhish: an automated phishing email analysis tool

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

A knowledge base of actionable Incident Response techniques

Cortex Analyzers Repository

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Python API Client for TheHive

Threat Feed Aggregation, Made Easy

Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform

Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform

DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform

This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.

TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to TIBER-EU processes.

This is a python tool aiming to make using TheHive webhooks easier.

Python script to automatically create sigma rules from The hive observables

Checks observables/ioc in TheHive/Cortex against the MISP warningslists

This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.

EmailScanner is an integration application in python that uses `exchangelib` to process mail items in Microsoft exchange.

Crowdstrike Falcon streaming api client in python

Analyzer for TheHive Cortex Soc platform. Allows you to run observables against default and custom ClamAV rules.

Script for automatically create a case in The Hive and start Cortex analyzers adapted to fit the observables.