Alternatives and similar repositories for thor_attck:

Users that are interested in thor_attck are comparing it to the libraries listed below

• chaoticmachinery / mass_triage_tools
  Mass Triage Tools
  ☆20Updated this week
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 4 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 9 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• mandiant / goauditparser
  ☆44Updated last year
• akky2892 / Cyber-Threat-Hunting
  Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…
  ☆15Updated 5 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 9 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 4 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆30Updated last year
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 9 months ago
• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 6 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 6 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 4 years ago
• philhagen / for572-scripts
  A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis
  ☆25Updated 2 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• LDO-CERT / FireEye2TH
  FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆16Updated 6 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆22Updated 6 years ago
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆25Updated 2 years ago
• haxrob / CVE-2019-19781
  DFIR notes for Citrix ADC (NetScaler) appliances vulnerable to CVE-2019-19781
  ☆45Updated 5 years ago
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆23Updated last year
• notx11 / urlScan2Hive
  Triage automation for suspect URLs
  ☆12Updated 5 years ago