YAFRA

YAFRA stands for [y]et [a]nother [f]ramework for [r]eport [a]nalysis

Description

YAFRA is a semi-automated framework for analysing and representing reports about IT security incidents. Users can provide reports as PDF and YAFRA will extract IOCs (indicators of compromise). After extraction these IOCs will be enriched by external sources such as VirusTotal or MITRE in order to provide more context.

Installation and Configuration

For information about the installation and configuration have a look in the docs folder.

Examples

Example reports can be found on the website of the US-CERT (CISA): https://us-cert.cisa.gov/ncas/analysis-reports

Extensions

YAFRA provides a simple to use extension system called YAFRA-Extensions. For more information, have a look at the extensions folder.

Name		Name	Last commit message	Last commit date
Latest commit History 155 Commits
.github		.github
assets		assets
datasets		datasets
docs		docs
extensions		extensions
iocextractor		iocextractor
iocpuller		iocpuller
iocpusher		iocpusher
iocreporter		iocreporter
libs		libs
misp-docker @ 4e81cf8		misp-docker @ 4e81cf8
scraper		scraper
sysmanamon		sysmanamon
.dockerignore		.dockerignore
.env.example		.env.example
.gitattributes		.gitattributes
.gitignore		.gitignore
.gitmodules		.gitmodules
.pylintrc		.pylintrc
CITATION.cff		CITATION.cff
LICENSE		LICENSE
README.md		README.md
SECURITY.md		SECURITY.md
docker-compose.optional.yml		docker-compose.optional.yml
docker-compose.yml		docker-compose.yml
makefile		makefile
requirements.txt		requirements.txt

License

hm-seclab/YAFRA

Folders and files

Latest commit

History

Repository files navigation

YAFRA

Description

Installation and Configuration

Examples

Extensions

About

Topics

Resources

License

Security policy

Stars

Watchers

Forks

Languages