Alternatives and similar repositories for wazuh_misp_integration

Users that are interested in wazuh_misp_integration are comparing it to the libraries listed below

• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated this week
• ThreatMon / ThreatMon-Daily-C2-Feeds
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆67Updated last year
• crcresearch / DWData
  Data from Dark Web Marketplace scraping - Be careful
  ☆40Updated 10 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated 8 months ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆48Updated last year
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• paulveillard / cybersecurity-incident-response
  A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources abou…
  ☆56Updated 2 years ago
• Permiso-io-tools / YetiHunter
  Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …
  ☆70Updated last year
• tsale / EDR-Telemetry-Website
  ☆74Updated this week
• DefensiveOrigins / DO-LAB
  ☆47Updated 4 months ago
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆50Updated last year
• pbssubhash / Py-Ran
  Ransomware Simulator for Red/Blue teams to test their defences.
  ☆19Updated 3 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆69Updated last year
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆43Updated 3 years ago
• haim-n / Windows-Security-Assessment
  Assess Windows OS for security misconfigurations and hardening opportunities.
  ☆34Updated last year
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 2 months ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• ThreatMon / ThreatMon-Reports-IOC
  ☆53Updated 2 weeks ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆29Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆157Updated 4 months ago
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆61Updated last year
• eddiechu / Encrypt-Delete-Test
  Really can protect from ransomware encryption?
  ☆46Updated last year
• corelight / Elasticsearch_rules
  Elastic version of SOC prime watcher rules
  ☆29Updated 10 months ago
• arsolutioner / fortigate-belsen-leak
  Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group
  ☆86Updated 7 months ago
• Res260 / conti_202202_leak_procedures
  This repository contains procedures found in the Feb 2022 conti leaks. They were taken from the "manual_teams_c" rocketchat channel in th…
  ☆87Updated 3 years ago
• mamun-sec / decap
  ☆34Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆89Updated 9 months ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆102Updated 5 months ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆21Updated 2 years ago