Alternatives and similar repositories for threat-intelligence-toolkit:

Users that are interested in threat-intelligence-toolkit are comparing it to the libraries listed below

• ExtraHop / code-examples
  ExtraHop public code examples
  ☆33Updated 4 months ago
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated last year
• opencybersecurityalliance / documentation
  OCA-wide documentation shared by all sub-projects and repositories
  ☆33Updated 5 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆28Updated last month
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆18Updated last month
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆12Updated last week
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 3 years ago
• Coalfire-CF / Coalfire-GCP-RAMPpak
  Coalfire GCP RAMP/pak Reference Architecture
  ☆12Updated 7 months ago
• mitre / training
  A CALDERA plugin
  ☆26Updated 8 months ago
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 3 years ago
• cado-security / CloudAndContainerCompromiseSimulator
  Simulates a compromise in a cloud and container environment
  ☆32Updated 3 months ago
• OpenSCAP / oval-graph
  Understand OVAL results in a blink of an eye
  ☆35Updated 2 years ago
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆19Updated last week
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆81Updated this week
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆70Updated last month
• zeek / zeek-docs
  Documentation for Zeek
  ☆50Updated this week
• Security-Onion-Solutions / securityonion-image
  ☆48Updated this week
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆15Updated 4 years ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 3 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 3 years ago
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆27Updated last year
• OTRF / openhunt
  ☆33Updated 3 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated last week
• mitre / mock
  A CALDERA plugin
  ☆13Updated last year
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago