Alternatives and similar repositories for python-maec

Users that are interested in python-maec are comparing it to the libraries listed below

• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆104Updated last week
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆124Updated 5 years ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Updated 3 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated 3 weeks ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆82Updated 7 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 7 years ago
• CybOXProject / python-cybox
  A Python library for parsing, manipulating, and generating CybOX content.
  ☆79Updated 5 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 3 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated last week
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• idaholab / STIG
  Structured Threat Intelligence Graph
  ☆97Updated 2 months ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆94Updated 7 years ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆69Updated last month
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆36Updated 10 years ago
• zeek / packages
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆143Updated this week
• S03D4-164 / Hiryu
  IOC Management and Visualization Tool
  ☆48Updated 3 years ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated last week
• adulau / pdns-qof
  Passive DNS Common Output Format
  ☆37Updated last year
• rjhansen / nsrllookup
  Checks with NSRL RDS servers looking for for hash matches
  ☆115Updated 4 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆295Updated 4 years ago
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆92Updated 6 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• AlienVault-OTX / yabin
  A Yara rule generator for finding related samples and hunting
  ☆161Updated 3 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated 2 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago