A scalable open source and free security incident response platform designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly.
Thanks to Cortex, observables such as IP and email addresses, URLs, domain names, files or hashes can be analyzed one by one using a Web interface. Analysts can also automate these operations and submit observables in bulk mode through the Cortex REST API from alternative SIRP platforms, custom scripts or MISP.
A Python API client for TheHive.
A team of hard-working enthusiastic people who helped this project come to life.
Please open an issue on GitHub if you'd like to report a bug or request a feature: TheHive, Cortex, Hippocampe, Analyzers, TheHive4py. You can also subscribe to our user forum and join the conversation on Gitter.
If you need to contact the project team, send an email to [email protected].