Alternatives and similar repositories for howler

Users that are interested in howler are comparing it to the libraries listed below

• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆114Updated last year
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆125Updated last year
• SophosRapidResponse / OSQuery
  ☆88Updated 8 months ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆118Updated 7 months ago
• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆152Updated 3 weeks ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated last year
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆56Updated last week
• korniko98 / pivot-atlas
  ☆99Updated 2 weeks ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• InfoSecInnovations / What2Log
  ☆43Updated 3 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆60Updated 3 weeks ago
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 3 years ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆37Updated 2 years ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆219Updated last month
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆108Updated last year
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆142Updated 3 years ago
• 0x706972686f / RMM-Catalogue
  ☆104Updated 4 months ago
• msraju / Incident-Response-Playbooks
  ☆47Updated 3 years ago
• center-for-threat-informed-defense / sensor-mappings-to-attack
  Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…
  ☆50Updated 4 months ago
• center-for-threat-informed-defense / attack-sync
  ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…
  ☆21Updated last week
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆129Updated 5 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 11 months ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 3 years ago
• pulsedive / certrss
  ☆120Updated 2 weeks ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆147Updated last month
• weslambert / velocistack
  ☆53Updated last year
• KC7-Foundation / kc7
  A cybersecurity game in Azure Data Explorer
  ☆173Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆159Updated 7 months ago
• target / Threat-Hunting
  Jupyter notebooks for threat hunting
  ☆59Updated 7 months ago