Welcome to TyLabs

TyLabs specializes in malware document forensics and threat intelligence tools.

Dovehawk is a Zeek Module package that downloads indicators and signatures from MISP and hunts for them on the wire. Hits are reported back to MISP as sightings and additional metadata can be passed to Slack or logged.

Dovehawk on GitHub

Contact us at (ty ~ tylabs.com).