Alternatives and similar repositories for python-maec

Users that are interested in python-maec are comparing it to the libraries listed below

• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated 5 months ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 6 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆92Updated 6 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆68Updated 4 years ago
• DCSO / MISP-dockerized
  ☆33Updated 5 years ago
• CybOXProject / python-cybox
  A Python library for parsing, manipulating, and generating CybOX content.
  ☆78Updated 5 years ago
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆29Updated this week
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆50Updated last year
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆82Updated 2 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 11 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated 4 months ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 2 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 11 months ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated 6 months ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆63Updated 10 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆102Updated 2 weeks ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• tribalchicken / postfix-cuckoolyse
  A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox
  ☆11Updated 9 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆102Updated 3 years ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆44Updated 2 years ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated 11 months ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆39Updated 4 years ago