Alternatives and similar repositories for use-cases

Users that are interested in use-cases are comparing it to the libraries listed below

• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆74Updated 12 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆41Updated 6 years ago
• gr4ym4ntx / attackintel
  A python script to query the MITRE ATT&CK API for tactics, techniques, mitigations, & detection methods for specific threat groups.
  ☆66Updated 6 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆105Updated 6 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 6 years ago
• threatexpress / portplow
  PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…
  ☆54Updated 6 months ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• mohlcyber / MISP-STIX-ESM
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Updated 5 years ago
• phage-nz / infosec-bazaar
  A collection of infosec related scripts and information.
  ☆53Updated 7 months ago
• Cyb3rWard0g / presentations
  Presentation Slides and Video links
  ☆32Updated 3 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 6 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• dichotomy / scorebot
  Scoring Engine for CTF competitions
  ☆47Updated 2 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• WeaverHeavy / Threat-Intelligence-Tradecraft
  ☆27Updated 7 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆86Updated last year
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 4 years ago
• tenable / yara-rules
  Repository of yara rules
  ☆60Updated 2 years ago
• carnal0wnage / malicious_file_maker
  malicious file maker/sender to create and send malicious attachments to test your email filter/alerting
  ☆69Updated 7 years ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• jaegeral / osint-timelines
  Providing timelines based on OSINT Reports
  ☆32Updated last year
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago