Alternatives and similar repositories for infosec-well-done

Users that are interested in infosec-well-done are comparing it to the libraries listed below

• Cyb3rWard0g / docker-caldera

  View on GitHub
  Docker Container to deploy Mitre Caldera Automated Adversary Emulation System
  ☆26Sep 26, 2020Updated 5 years ago
• h3xduck / TCPcannon

  View on GitHub
  Offensive Linux tool for network attacks. Built from the ground with only C.
  ☆14May 1, 2021Updated 4 years ago
• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• nccgroup / JA3_outlier

  View on GitHub
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆16Aug 10, 2022Updated 3 years ago
• Yamato-Security / Presentations

  View on GitHub
  ☆21Nov 19, 2025Updated 2 months ago
• mvelazc0 / Talks-Presentations

  View on GitHub
  Resource links (video, slides & code) for my conference talks | presentations | workshops
  ☆21Nov 17, 2025Updated 3 months ago
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated last year
• chihebchebbi / Azure-Sentinel-Report-Generator

  View on GitHub
  ☆14Feb 22, 2021Updated 4 years ago
• duo-labs / tutorials

  View on GitHub
  ☆15Feb 1, 2019Updated 7 years ago
• andrewkroh / beats-playground

  View on GitHub
  Web UI for testing Elastic Beats processors
  ☆18Feb 10, 2026Updated last week
• NVISOsecurity / nviso-cti

  View on GitHub
  ☆44Jul 11, 2025Updated 7 months ago
• molu8bits / squid-filebeat-kibana

  View on GitHub
  Filebeat module for Squid access.log + Kibana dashboards. ELK 7.x
  ☆17Sep 19, 2020Updated 5 years ago
• blookot / rsa2elk

  View on GitHub
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Sep 10, 2020Updated 5 years ago
• ProfessionallyEvil / client-side-attacks-lab

  View on GitHub
  Lab Environment for learning client-side attacks such as CSRF, Clickjacking, XSS, and CORS abuse.
  ☆20Dec 10, 2022Updated 3 years ago
• dfir-dd / incident-response-playbooks

  View on GitHub
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆51Apr 25, 2024Updated last year
• mandiant / vivisect

  View on GitHub
  pure Python binary analysis framework
  ☆23Oct 26, 2018Updated 7 years ago
• outflanknl / Exploits

  View on GitHub
  Exploits developped by Outflank B.V. team members
  ☆21Jan 26, 2017Updated 9 years ago
• RomaissaAdjailia / MindMaps

  View on GitHub
  ☆23Jun 1, 2022Updated 3 years ago
• cyb3rfox / MFTEntryCarver

  View on GitHub
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆22Jun 3, 2019Updated 6 years ago
• LetMeR00t / TA-thehive-cortex

  View on GitHub
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆54Sep 16, 2025Updated 5 months ago
• calebmadrigal / network-hacking-scripts

  View on GitHub
  Simple network tools written with Scapy.
  ☆23Mar 22, 2016Updated 9 years ago
• 3CORESec / SIEGMA

  View on GitHub
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆159Mar 10, 2025Updated 11 months ago
• pmelson / pyhexdmp

  View on GitHub
  ☆27Feb 6, 2022Updated 4 years ago
• terry-wen / Network-Visualization-Project

  View on GitHub
  Network visualizer tool built using Processing
  ☆24Jun 23, 2021Updated 4 years ago
• jeffjbowie / intelligence_gathering

  View on GitHub
  A collection of scripts for the purpose of gathering open source intelligence, to be presented at GrayHat, BSides Denver, and Information…
  ☆25Feb 4, 2021Updated 5 years ago
• sfakiana / SANS-CTI-Summit-2021

  View on GitHub
  Resources for SANS CTI Summit 2021 presentation
  ☆104Nov 8, 2023Updated 2 years ago
• certtools / malware_name_mapping

  View on GitHub
  A mapping of used malware names to commonly known family names
  ☆62Feb 21, 2023Updated 2 years ago
• ankiano / etl

  View on GitHub
  Extract transform load CLI tool for extracting small and middle data volume from sources (databases, csv files, xls files, gspreadsheets)…
  ☆11Dec 17, 2025Updated 2 months ago
• pielco11 / JungleScam

  View on GitHub
  An Amazon OSINT scraper for potential scam accounts
  ☆33Jan 17, 2019Updated 7 years ago
• cudeso / CSIRT-Jump-Bag

  View on GitHub
  CSIRT Jump Bag
  ☆27Apr 25, 2024Updated last year
• bmarsh9 / spate

  View on GitHub
  Quickly create workflows, business and process automation pipelines. Supports API, UI and Cron based workflows.
  ☆30Feb 7, 2024Updated 2 years ago
• osV22 / ATTACK-Force-Graph

  View on GitHub
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆38Apr 19, 2025Updated 9 months ago
• jivoi / offsec_pdfs

  View on GitHub
  your offsec knowledge
  ☆481Oct 9, 2019Updated 6 years ago
• cameling / logminer

  View on GitHub
  Mine patterns from logs
  ☆27Dec 12, 2016Updated 9 years ago
• whichbuffer / Lockbit-Black-3.0

  View on GitHub
  ☆27Jul 11, 2022Updated 3 years ago
• ManagedSentinel / AzureSentinelKQLScripts

  View on GitHub
  Various tools used to monitor and troubleshoot Azure Sentinel data
  ☆31Oct 24, 2024Updated last year
• k0fin / arsenal

  View on GitHub
  An automated Python script which installs an extra arsenal of penetration testing tools and utilities into Kali Linux.
  ☆30Aug 22, 2017Updated 8 years ago
• sebdraven / IOCmite

  View on GitHub
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Nov 9, 2022Updated 3 years ago
• awais922609 / Lets-Defend-Solutions

  View on GitHub
  The "Let's-defend-solution" directory contains the answers to all paths of the Let's Defend platform that were saved by the creator 8 mon…
  ☆12Apr 27, 2023Updated 2 years ago