Alternatives and similar repositories for misp-wireshark

Users that are interested in misp-wireshark are comparing it to the libraries listed below

• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆33Updated last year
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 7 months ago
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated 3 weeks ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆64Updated 2 years ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• SentineLabs / log4j_response
  ☆15Updated 3 years ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated last year
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆30Updated 2 months ago
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆17Updated 4 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 7 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated 2 weeks ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆16Updated last week
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• ANSSI-FR / sftp2misp
  Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
  ☆15Updated 2 years ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆47Updated 2 years ago
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆40Updated 6 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• Symantec / threathunters
  ☆29Updated 6 months ago
• ail-project / ail-training
  AIL project training materials
  ☆33Updated last month
• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆55Updated 3 months ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 4 years ago
• TobySalusky / cont3xt
  Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…
  ☆37Updated last year
• ninoseki / shimon
  URL fingerprinting made easy
  ☆87Updated last year
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆35Updated 3 years ago
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆51Updated 6 months ago
• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆31Updated 3 months ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago