Alternatives and similar repositories for dendrol

Users that are interested in dendrol are comparing it to the libraries listed below

• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆29Updated last year
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Updated 3 years ago
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 5 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated 2 years ago
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 7 years ago
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆73Updated 2 years ago
• StephenOTT / STIX-Faker
  STIX 2 Fake Data Generator
  ☆11Updated last year
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆103Updated this week
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆82Updated 7 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆65Updated 2 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆34Updated this week
• oasis-open / cti-stix-validator
  OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
  ☆59Updated 4 months ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆64Updated 5 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated this week
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆141Updated 2 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated 8 months ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 8 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆103Updated 4 years ago
• kevthehermit / YaraManager
  Web based Manager for Yara Rules
  ☆58Updated 5 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆39Updated 8 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 6 years ago
• gitunique / cti-scripts
  Scripts for accessing and transforming cyber threat intelligence
  ☆26Updated 10 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆85Updated 3 years ago
• blockadeio / cloud_node
  Python-based cloud node for local use
  ☆11Updated 7 years ago