Alternatives and similar repositories for dshield:

Users that are interested in dshield are comparing it to the libraries listed below

• teamdfir / sift-cli
  CLI tool to manage a SIFT Install
  ☆417Updated last year
• corelight / zeek-cheatsheets
  Zeek Log Cheatsheets
  ☆286Updated 2 years ago
• dhoelzer / ShowMeThePackets
  Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…
  ☆220Updated last month
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆283Updated last year
• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆289Updated 4 months ago
• teamdfir / sift
  SIFT
  ☆498Updated 11 months ago
• sans-blue-team / blue-team-wiki
  Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
  ☆443Updated 2 years ago
• MarkBaggett / freq
  This is a repository for freq.py and freq_server.py
  ☆203Updated 4 years ago
• orlikoski / CyLR
  CyLR - Live Response Collection Tool
  ☆662Updated 2 years ago
• swannman / ircapabilities
  Incident Response Hierarchy of Needs
  ☆446Updated last year
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆249Updated last year
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆573Updated 7 months ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆113Updated 3 months ago
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆394Updated last year
• MarkBaggett / domain_stats
  ☆211Updated last year
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆347Updated this week
• MISP / misp-modules
  Modules for expansion services, enrichment, import and export in MISP and other tools.
  ☆352Updated last month
• PaloAltoNetworks / minemeld
  Main MineMeld documentation repo
  ☆380Updated 7 years ago
• MalwareArchaeology / ARTHIR
  ATT&CK Remote Threat Hunting Incident Response
  ☆198Updated last month
• MISP / misp-book
  User guide of MISP
  ☆264Updated 3 weeks ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆240Updated 3 years ago
• theflakes / Ultimate-Forensics-VM
  Evolving directions on building the best Open Source Forensics VM
  ☆159Updated 6 years ago
• TheHive-Project / Cortex-Analyzers
  Cortex Analyzers Repository
  ☆441Updated 2 weeks ago
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆304Updated this week
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆97Updated this week
• MISP / misp-training
  MISP trainings, threat intel and information sharing training materials with source code
  ☆395Updated last month
• AustralianCyberSecurityCentre / windows_event_logging
  Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…
  ☆215Updated 2 years ago
• philhagen / sof-elk
  Configuration files for the SOF-ELK VM
  ☆1,546Updated 2 weeks ago
• MSISAC / STIX-TAXII-Integration
  ☆28Updated 5 years ago
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆171Updated last year