Alternatives and similar repositories for dendrol

Users that are interested in dendrol are comparing it to the libraries listed below

• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆29Updated last year
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Updated 3 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆73Updated 2 years ago
• blockadeio / cloud_node
  Python-based cloud node for local use
  ☆11Updated 7 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• StephenOTT / STIX-Faker
  STIX 2 Fake Data Generator
  ☆11Updated 11 months ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆103Updated 4 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆101Updated 2 weeks ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated this week
• theY4Kman / suricata-prettifier
  Command-line tool to format and syntax highlight Suricata rules
  ☆13Updated 5 years ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆64Updated 5 years ago
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 4 years ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• mitre / stix2patterns_translator
  Translate STIX 2 Patterning Queries
  ☆31Updated 7 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆84Updated 3 years ago
• ryanplasma / awesome-splunk-phantom
  A collection of awesome resources built for and around the Splunk Phantom platform.
  ☆15Updated 5 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆81Updated 7 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 2 years ago
• carbonblack / cb-lastline-connector
  Carbon Black - LastLine Binary Detonation Connector
  ☆11Updated 2 years ago
• salesforce / threatshell
  ☆64Updated 3 years ago
• rjhansen / nsrlsvr
  ☆83Updated 2 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated 7 months ago
• oasis-open / cti-taxii-client
  OASIS TC Open Repository: TAXII 2 Client Library Written in Python
  ☆117Updated last year