Alternatives and similar repositories for artifacts

Users that are interested in artifacts are comparing it to the libraries listed below

• DFIRKuiper / Kuiper
  Digital Forensics Investigation Platform
  ☆859Updated last year
• orlikoski / CyLR
  CyLR - Live Response Collection Tool
  ☆700Updated 3 years ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆879Updated last month
• log2timeline / plaso
  Super timeline all the things
  ☆1,967Updated last week
• EricZimmerman / KapeFiles
  This repository serves as a place for community created Targets and Modules for use with KAPE.
  ☆786Updated 3 weeks ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,748Updated last month
• advanced-threat-research / Yara-Rules
  Repository of YARA rules made by Trellix ATR Team
  ☆620Updated 8 months ago
• cyb3rfox / Aurora-Incident-Response
  Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
  ☆949Updated 2 years ago
• Neo23x0 / munin
  Online hash checker for Virustotal and other services
  ☆837Updated 8 months ago
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆617Updated last year
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,885Updated last week
• ThreatHuntingProject / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆1,831Updated 4 years ago
• mitre-attack / car
  Cyber Analytics Repository
  ☆968Updated 6 months ago
• philhagen / sof-elk
  Configuration files for the SOF-ELK VM
  ☆1,698Updated last week
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆928Updated 6 months ago
• A3sal0n / CyberThreatHunting
  A collection of resources for Threat Hunters
  ☆910Updated last year
• OTRF / Security-Datasets
  Re-play Security Events
  ☆1,699Updated last year
• davehull / Kansa
  A Powershell incident response framework
  ☆1,629Updated 3 years ago
• sophoslabs / IoCs
  Sophos-originated indicators-of-compromise from published reports
  ☆636Updated 3 months ago
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆334Updated this week
• olafhartong / ThreatHunting
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,171Updated 2 years ago
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆591Updated 3 weeks ago
• mitre-attack / attack-scripts
  Scripts and a (future) library to improve users' interactions with the ATT&CK content
  ☆586Updated last year
• pan-unit42 / iocs
  Indicators from Unit 42 Public Reports
  ☆727Updated 3 months ago
• atc-project / atomic-threat-coverage
  Actionable analytics designed to combat threats
  ☆1,005Updated 3 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆885Updated last year
• OTRF / OSSEM
  Open Source Security Events Metadata (OSSEM)
  ☆1,284Updated 2 years ago
• certsocietegenerale / IRM-deprecated
  Incident Response Methodologies
  ☆1,026Updated 7 years ago
• certtools / intelmq
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,099Updated 3 weeks ago
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆529Updated last year