Alternatives and similar repositories for docs-pub

Users that are interested in docs-pub are comparing it to the libraries listed below

• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆141Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆168Updated 5 years ago
• carbonblack / cb-taxii-connector
  Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.
  ☆15Updated 3 years ago
• PaloAltoNetworks / minemeld-node-prototypes
  Prototypes for MineMeld nodes
  ☆39Updated 3 years ago
• tanium / pytan
  Python Wrapper for Tanium's SOAP API
  ☆44Updated 6 years ago
• IBM / data-import
  ☆48Updated 9 years ago
• opendxl / opendxl-client-python
  OpenDXL Python Client
  ☆94Updated 5 months ago
• oasis-tcs / openc2-usecases
  OASIS OpenC2 TC: Repository for submitting and reviewing OpenC2 use cases relevant to the work of the OpenC2 Language Subcommittee (LSC)
  ☆28Updated 3 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆82Updated 2 years ago
• OpenC2-org / openc2-org
  The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.
  ☆30Updated 8 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated last year
• tarxvf / avotx
  AlienVault Open Threat Exchange App For Splunk
  ☆9Updated 11 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆175Updated 4 years ago
• vmware-archive / cbapi
  Carbon Black API Resources
  ☆93Updated 7 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 5 years ago
• CrowdStrike / falcon-orchestrator
  CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities
  ☆187Updated last year
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆249Updated 8 months ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆73Updated 2 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• nsacyber / unfetter
  Identifies defensive gaps in security posture by leveraging Mitre's ATT&CK framework. #nsacyber
  ☆163Updated 5 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• unfetter-discover / unfetter-analytic
  Main Build directory
  ☆179Updated 6 years ago