Alternatives and similar repositories for howler:

Users that are interested in howler are comparing it to the libraries listed below

• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆115Updated last year
• ReconInfoSec / velociraptor-to-timesketch
  ☆4Updated 3 months ago
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆75Updated 8 months ago
• AttackIQ / pySigma-backend-kusto
  ☆34Updated last month
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆108Updated 2 months ago
• weslambert / velocistack
  ☆51Updated 8 months ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆113Updated last month
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆188Updated 4 months ago
• k-bailey / detection-engineering-maturity-matrix
  ☆93Updated 2 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated last month
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆52Updated 3 months ago
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆108Updated 3 months ago
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆111Updated last year
• SophosRapidResponse / OSQuery
  ☆82Updated 3 weeks ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆82Updated last week
• 00010111 / smbtimeline
  ☆32Updated 3 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆65Updated this week
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆112Updated last year
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆137Updated this week
• reflexsoar / reflex
  Reflex SOAR
  ☆12Updated 2 years ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 2 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆146Updated last year
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆193Updated 2 weeks ago
• ethack / tht
  Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
  ☆123Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆45Updated 3 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆159Updated last year
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆107Updated 2 weeks ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆107Updated 11 months ago
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆241Updated last week
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆102Updated last year