Alternatives and similar repositories for HASH

Users that are interested in HASH are comparing it to the libraries listed below

• elastic / SWAT
  ☆163Updated this week
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆102Updated last year
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆105Updated last year
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆125Updated 5 months ago
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆248Updated 10 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆108Updated 2 weeks ago
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆298Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆118Updated 2 years ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆134Updated 5 months ago
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆246Updated last year
• iknowjason / edge
  Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆174Updated last week
• korniko98 / pivot-atlas
  ☆96Updated last month
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆95Updated last week
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆117Updated last year
• Yamato-Security / suzaku
  Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.
  ☆149Updated 2 weeks ago
• 0xAIDR / AIDR-Bastion
  A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…
  ☆38Updated last week
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆104Updated 6 months ago
• fkie-cad / bountyhunter
  A Caldera plugin for the emulation of complete, realistic cyberattack chains.
  ☆57Updated last month
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆30Updated 2 years ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆130Updated last year
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆177Updated 8 months ago
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆79Updated last month
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆85Updated last month
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆51Updated 8 months ago
• aws-samples / jupyter-notebook-for-incident-response
  A library of Incident Response notebooks using Jupyter. We will show how you can leverage pre-defined notebook files to guide your incide…
  ☆149Updated last year
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• HackingLZ / IndicatorOfCanary
  Canary Detection
  ☆187Updated 4 months ago
• stripe / ft3
  FT3: Fraud Tools, Tactics, and Techniques Framework
  ☆91Updated 2 months ago
• arsolutioner / ExtensionHound
  A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…
  ☆180Updated 7 months ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆35Updated 10 months ago