Alternatives and similar repositories for Public-Intelligence-Feeds:

Users that are interested in Public-Intelligence-Feeds are comparing it to the libraries listed below

• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆92Updated 3 years ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆361Updated this week
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆194Updated last month
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆132Updated last year
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆149Updated 2 months ago
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆195Updated last week
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆46Updated last month
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated 2 weeks ago
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆152Updated 3 weeks ago
• Securonix / AutonomousThreatSweeper
  Threat Hunting queries for various attacks
  ☆233Updated last week
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆172Updated this week
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆64Updated last year
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆160Updated 3 weeks ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆111Updated last month
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆126Updated 2 months ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆63Updated last year
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• The-DFIR-Report / Yara-Rules
  ☆68Updated 2 months ago
• infobloxopen / threat-intelligence
  ☆74Updated last month
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆127Updated 3 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆150Updated 6 months ago
• SophosRapidResponse / OSQuery
  ☆83Updated 2 months ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆153Updated 11 months ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆65Updated 3 years ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆67Updated last month
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆152Updated 3 years ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated 5 months ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆158Updated 8 months ago
• Orange-Cyberdefense / russia-ukraine_IOCs
  Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake
  ☆174Updated 2 years ago
• NUKIB / misp
  Docker image for MISP
  ☆127Updated last month