Alternatives and similar repositories for assemblyline4_docs:

Users that are interested in assemblyline4_docs are comparing it to the libraries listed below

• SigmaHQ / pySigma-backend-elasticsearch
  pySigma Elasticsearch backend
  ☆48Updated this week
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆159Updated last year
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆141Updated 2 weeks ago
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆188Updated 2 months ago
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆128Updated 10 months ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆107Updated this week
• CybercentreCanada / assemblyline
  AssemblyLine 4: File triage and malware analysis
  ☆264Updated this week
• THOR-Collective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆170Updated this week
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆145Updated 4 months ago
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆185Updated 4 months ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆85Updated last month
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆52Updated 2 months ago
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆104Updated 2 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆96Updated last year
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆53Updated last week
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆74Updated 2 months ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆110Updated last year
• ReconInfoSec / velociraptor-to-timesketch
  ☆4Updated 2 months ago
• korniko98 / pivot-atlas
  ☆86Updated 4 months ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆100Updated 4 months ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆156Updated 4 months ago
• StrangerealIntel / EternalLiberty
  ☆197Updated last year
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆261Updated last year
• JHUAPL / Low-Regret-Methodology
  ☆27Updated 3 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆146Updated last year
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆102Updated last year
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆115Updated last year
• netskopeoss / NetskopeThreatLabsIOCs
  ☆97Updated last month
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆112Updated 3 weeks ago