Alternatives and similar repositories for falcon-orchestrator

Users that are interested in falcon-orchestrator are comparing it to the libraries listed below

• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆117Updated 7 years ago
• LogRhythm-Labs / PIE
  The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
  ☆181Updated 5 years ago
• Infocyte / PSHunt
  Powershell Threat Hunting Module
  ☆287Updated 9 years ago
• MarkBaggett / MarkBaggett
  ☆194Updated last year
• Invoke-IR / ACE
  Automated, Collection, and Enrichment Platform
  ☆324Updated 6 years ago
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆145Updated last year
• et0x / Incident-Response
  ☆36Updated 9 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆251Updated 4 years ago
• unfetter-discover / unfetter-analytic
  Main Build directory
  ☆179Updated 6 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago
• adhdproject / buildkit
  ☆73Updated 7 years ago
• daveherrald / botsv1
  Splunk Boss of the SOC v1 data set.
  ☆113Updated 7 years ago
• MHaggis / hunt-detect-prevent
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆166Updated 7 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 8 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆177Updated 7 years ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆73Updated 7 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆148Updated 8 years ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆113Updated last month
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆344Updated 3 years ago
• SparkITSolutions / phoenix
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆107Updated 5 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆110Updated 7 years ago
• SMAPPER / NXLog-AutoConfig
  ☆50Updated 5 years ago
• MHaggis / sysmon-splunk-app
  Sysmon Splunk App
  ☆47Updated 7 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆55Updated 5 years ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆252Updated last year
• mandiant / ioc_writer
  ☆206Updated 2 years ago
• bromiley / olaf
  Office365 Log Analysis Framework
  ☆81Updated 6 years ago
• sans-blue-team / freq.py
  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…
  ☆129Updated 3 years ago
• nsacyber / Pass-the-Hash-Guidance
  Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber
  ☆200Updated 9 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆92Updated 8 years ago