A collection of projects our team members openly support or have worked on.
hivecached
Push TheHive observables that are flagged as IOCs to Memcached to be used in logstash pipelines for detecting IOCs in log messages
n3tsurge/hivecached
Pushes TheHive observables marked as IOC to memcached - n3tsurge/hivecached
GitHub
ews2hive
Monitor an Exchange mailbox for phishing reports and push the original message, all artifacts and attachments to TheHive as a case
n3tsurge/ews2hive
Monitors a mailbox via Exchange Web Services and pushes the reports to TheHive - n3tsurge/ews2hive
GitHubElastic2Hive
Push SIEM alerts from Elastic Stack to TheHive
n3tsurge/elastic2hive
Elastic SIEM Signals to TheHive Alerts. Contribute to n3tsurge/elastic2hive development by creating an account on GitHub.
GitHubPosh-SentinelOne
n3tsurge/posh-sentinelone2.0
PowerShell Module for Managing a SentinelOne Installation - Central Park (2.6) or Higher - n3tsurge/posh-sentinelone2.0
SmellsPhishy
n3tsurge/smells-phishy
A PowerShell based phishing analysis engine. Contribute to n3tsurge/smells-phishy development by creating an account on GitHub.
IPBlisted
n3tsurge/ipblisted
A python script to check an IP against blacklists. Contribute to n3tsurge/ipblisted development by creating an account on GitHub.