Alternatives and similar repositories for dendrol

Users that are interested in dendrol are comparing it to the libraries listed below

• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆29Updated last year
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated 2 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Updated 3 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆104Updated this week
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆34Updated last week
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated 2 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago
• StephenOTT / STIX-Faker
  STIX 2 Fake Data Generator
  ☆11Updated last year
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆104Updated 4 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆141Updated 2 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆82Updated 7 years ago
• ryanplasma / awesome-splunk-phantom
  A collection of awesome resources built for and around the Splunk Phantom platform.
  ☆15Updated 5 years ago
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆267Updated 2 years ago
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆71Updated 3 years ago
• blockadeio / cloud_node
  Python-based cloud node for local use
  ☆11Updated 7 years ago
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 5 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 7 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆67Updated 2 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• oasis-open / cti-taxii-client
  OASIS TC Open Repository: TAXII 2 Client Library Written in Python
  ☆119Updated last year
• ctxis / cbrcli
  Command line interface to Carbon Black Response
  ☆38Updated 5 years ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆64Updated 5 years ago
• carbonblack / cb-lastline-connector
  Carbon Black - LastLine Binary Detonation Connector
  ☆11Updated 2 years ago
• MattCarothers / uhp
  Universal Honey Pot
  ☆29Updated 3 months ago