Alternatives and similar repositories for python-cybox

Users that are interested in python-cybox are comparing it to the libraries listed below

• stephenbrannon / IOCextractor
  IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
  ☆134Updated 9 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 5 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆111Updated 12 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆97Updated 9 years ago
• S03D4-164 / Hiryu
  IOC Management and Visualization Tool
  ☆47Updated 2 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆122Updated 4 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 6 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆82Updated 9 years ago
• crits / crits_services
  CRITs Services Collection
  ☆184Updated 4 years ago
• STIXProject / stix-viz
  STIX Visualization Tool
  ☆109Updated 7 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆92Updated 6 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 3 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• shiva-spampot / shiva
  Spam Honeypot with Intelligent Virtual Analyzer
  ☆138Updated 5 months ago
• sethhall / bro-apt1
  This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
  ☆49Updated 11 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆102Updated 5 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated 6 months ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆106Updated 6 years ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆280Updated 2 years ago
• syphon1c / Threatelligence
  Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…
  ☆148Updated 11 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆122Updated 4 years ago
• blackhole-em / cuckoo2STIX
  ☆37Updated 11 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated 8 months ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• citizenlab / malware-signatures
  Yara rules for malware families seen as part of targeted threats project
  ☆142Updated 8 years ago