Alternatives and similar repositories for dendrol

Users that are interested in dendrol are comparing it to the libraries listed below

• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆28Updated last year
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆44Updated 3 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• csirtgadgets / csirtg-smrt-v1
  the fastest way to consume threat intelligence.
  ☆31Updated 2 years ago
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆29Updated 2 weeks ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• blockadeio / cloud_node
  Python-based cloud node for local use
  ☆11Updated 7 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 7 years ago
• dnlongen / IR-Toolkit
  ☆23Updated 4 years ago
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆100Updated last month
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆73Updated 2 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 4 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆102Updated 4 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• ryanplasma / awesome-splunk-phantom
  A collection of awesome resources built for and around the Splunk Phantom platform.
  ☆15Updated 5 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated 2 weeks ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• gitunique / cti-scripts
  Scripts for accessing and transforming cyber threat intelligence
  ☆26Updated 9 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆65Updated last year
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• oasis-open / cti-stix-validator
  OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
  ☆55Updated last month
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆62Updated 5 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆83Updated 2 years ago
• enisaeu / Reference-Security-Incident-Taxonomy-Task-Force
  This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.
  ☆69Updated 5 months ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated 3 weeks ago