Alternatives and similar repositories for mailgoose

Users that are interested in mailgoose are comparing it to the libraries listed below

• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆198Updated 2 weeks ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• HackingLZ / IndicatorOfCanary
  Canary Detection
  ☆187Updated 3 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆175Updated 2 months ago
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆51Updated 7 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆78Updated 4 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated last month
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated 11 months ago
• arsolutioner / ExtensionHound
  A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…
  ☆177Updated 6 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆26Updated 2 years ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆92Updated last year
• drego85 / meioc
  Extracting IoC data from eMail
  ☆138Updated 3 weeks ago
• LOTTunnels / LOTTunnels.github.io
  ☆104Updated last month
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆121Updated 2 years ago
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆112Updated 4 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆124Updated last year
• grahamhelton / grahamhelton.github.io
  ☆41Updated last year
• mr-r3b00t / crime-mapper
  A tool for mapping cyber crime
  ☆150Updated 4 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆254Updated last year
• redar0n / incident-runbook
  A runbook for handling security incidents in cooperation with 0xsyr0
  ☆51Updated 2 years ago
• Censys-Research / censeye
  ☆146Updated 2 months ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆137Updated last year
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆121Updated this week
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆154Updated 4 months ago
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆108Updated 10 months ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆101Updated 5 months ago
• hackertarget / pcap-did-what
  Analyze pcaps with Zeek and a Grafana Dashboard
  ☆182Updated last year
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆93Updated last week
• MFMokbel / Crawlector
  Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
  ☆126Updated last year
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆175Updated 7 months ago