Alternatives and similar repositories for CyberSOCEval_data

Users that are interested in CyberSOCEval_data are comparing it to the libraries listed below

• fr0gger / MCP_Security
  This is a repository to experiment with MCP for security
  ☆45Updated 11 months ago
• jalacloud / mcp-cti
  Repo for experimenting and testing MCP server builds for CTI-related research.
  ☆27Updated 8 months ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆26Updated last month
• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆59Updated 9 months ago
• silascutler / awesome-docker-malware-analysis
  Repository of tools and resources for analyzing Docker containers
  ☆71Updated 2 years ago
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆28Updated last year
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Updated 2 weeks ago
• muchdogesec / obstracts
  Turn any blog into structured threat intelligence.
  ☆43Updated last week
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆107Updated last month
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 6 months ago
• BenjiTrapp / aws-threat-hunting
  Short deep dive into Threat Hunting on AWS
  ☆17Updated 2 years ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆61Updated 5 months ago
• Permiso-io-tools / YetiHunter
  Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …
  ☆73Updated last year
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆90Updated 3 months ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆50Updated 10 months ago
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆109Updated 3 months ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆46Updated last year
• korniko98 / pivot-atlas
  ☆101Updated last month
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆41Updated 8 months ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Updated last year
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆70Updated last week
• phretor / infosec-opml
  My very personal and opinionatedly organized infosec/cybersec sources in one OPML file
  ☆59Updated 3 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• muchdogesec / ctibutler
  A web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...
  ☆19Updated last week
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• Permiso-io-tools / capiche
  ☆18Updated last week
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• infosecn1nja / TTPMapper
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆48Updated 6 months ago
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆35Updated 2 years ago