Alternatives and similar repositories for Vendor-Threat-Triage-Lookup

Users that are interested in Vendor-Threat-Triage-Lookup are comparing it to the libraries listed below

• Beercow / SEPparser
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆64Updated 2 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆109Updated 6 months ago
• jklepsercyber / defender-detectionhistory-parser
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆114Updated 3 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆88Updated last week
• 0xrawsec / gene
  Signature engine for all your logs
  ☆173Updated 2 years ago
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆141Updated last year
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆226Updated 4 years ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆170Updated 3 years ago
• fireeye / HXTool
  HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…
  ☆84Updated last year
• fireeye / BitsParser
  ☆151Updated last year
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 3 years ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆127Updated 3 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆155Updated last year
• sumeshi / evtx2es
  A library for fast parse & import of Windows Eventlogs into Elasticsearch.
  ☆85Updated 5 months ago
• lprat / static_file_analysis
  Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
  ☆50Updated 2 years ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆78Updated 3 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆50Updated 4 years ago
• thomaspatzke / Log4Pot
  A honeypot for the Log4Shell vulnerability (CVE-2021-44228).
  ☆92Updated 11 months ago
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 3 years ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆65Updated 10 months ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆97Updated 2 years ago
• pan-unit42 / tweets
  ☆131Updated last year
• netskopeoss / NetskopeThreatLabsIOCs
  ☆147Updated last month
• cedowens / C2-JARM
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆144Updated 2 years ago
• CrowdStrike / xwf-yara-scanner
  ☆88Updated 3 months ago
• muteb / Hoarder
  This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …
  ☆205Updated 5 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆107Updated 7 months ago
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆74Updated 2 years ago
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆79Updated last year
• iomoath / yara-scanner
  YaraScanner is a file pattern-matching tool based on YARA rules.
  ☆59Updated 2 years ago