Alternatives and similar repositories for HASH

Users that are interested in HASH are comparing it to the libraries listed below

• elastic / SWAT
  ☆166Updated 2 months ago
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆107Updated 2 years ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆112Updated 2 months ago
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆298Updated last year
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆92Updated last year
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆103Updated last month
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated last year
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated last year
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆138Updated last month
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆120Updated 2 years ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆107Updated 8 months ago
• Yamato-Security / suzaku
  Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.
  ☆160Updated last month
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆130Updated 7 months ago
• cisagov / kev-data
  Mirror of cisa.gov/kev data files
  ☆62Updated this week
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• korniko98 / pivot-atlas
  ☆99Updated last month
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆82Updated 2 weeks ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆256Updated last year
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆291Updated 3 weeks ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Updated last year
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆53Updated last month
• nccgroup / ccs
  ☆114Updated 2 years ago
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆95Updated last month
• iknowjason / edge
  Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆182Updated last month
• CERT-Polska / mailgoose
  A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.
  ☆182Updated 2 weeks ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆117Updated last year
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆212Updated this week
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆52Updated last year
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆187Updated 10 months ago