Alternatives and similar repositories for dendrol

Users that are interested in dendrol are comparing it to the libraries listed below

• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆28Updated last year
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆44Updated 3 years ago
• StephenOTT / STIX-Faker
  STIX 2 Fake Data Generator
  ☆11Updated 9 months ago
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 5 years ago
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆73Updated 7 years ago
• blockadeio / cloud_node
  Python-based cloud node for local use
  ☆11Updated 7 years ago
• csirtgadgets / csirtg-smrt-v1
  the fastest way to consume threat intelligence.
  ☆31Updated 2 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆59Updated last year
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆100Updated 2 weeks ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• ryanplasma / awesome-splunk-phantom
  A collection of awesome resources built for and around the Splunk Phantom platform.
  ☆15Updated 5 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆73Updated 2 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆50Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last month
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆82Updated 2 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆101Updated 3 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 9 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• MISP / misp-compliance
  Legal, procedural and policies document templates for operating MISP and information sharing communities
  ☆38Updated 2 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• DCSO / MISP-dockerized
  ☆34Updated 5 years ago