Alternatives and similar repositories for salt-states

Users that are interested in salt-states are comparing it to the libraries listed below

• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆45Updated 3 years ago
• brimorlabs / KStrike
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆73Updated last year
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 9 years ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆53Updated 2 years ago
• 00010111 / smbtimeline
  ☆34Updated 7 months ago
• ashwin-patil / threat-hunting-with-notebooks
  Repository with Sample threat hunting notebooks on Security Event Log Data Sources
  ☆63Updated 2 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆96Updated 2 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆78Updated 9 months ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated 4 months ago
• mdegrazia / KAPE_Tools
  Tools and Binaries to use with KAPE
  ☆12Updated 5 years ago
• 4n6ist / bulk_extractor-rec
  It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving
  ☆39Updated 5 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 5 years ago
• Beercow / SEPparser
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆65Updated 2 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 4 years ago
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆75Updated 3 months ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 4 years ago
• olafhartong / TA-Sysmon-deploy
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆31Updated 4 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆44Updated last year
• corelight / threat-hunting-guide
  ☆51Updated 3 years ago
• airbus-cert / timeliner
  A rewrite of mactime, a bodyfile reader
  ☆37Updated 9 months ago
• zerofox-oss / phishpond
  Because phishtank was taken.. explore phishing kits in a contained environment!
  ☆47Updated 3 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 3 years ago
• weslambert / securityonion-misp
  ☆35Updated 4 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆83Updated 4 years ago
• teamdfir / volatility-plugins-community
  Volatility plugins developed and maintained by the community
  ☆21Updated 8 months ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 3 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆63Updated 10 years ago