Alternatives and similar repositories for QRadar-ThreatIntel-Import

Users that are interested in QRadar-ThreatIntel-Import are comparing it to the libraries listed below

• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago
• HASecuritySolutions / Update-VMs
  Snapshot, patch, health-check, and potentially roll-back Windows VMs
  ☆34Updated 7 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 5 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆25Updated 5 years ago
• Symantec / threathunters
  ☆29Updated 7 months ago
• MarkBaggett / domain_stats2
  ☆14Updated 5 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆35Updated 3 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆54Updated 4 years ago
• NVISOsecurity / nviso-cti
  ☆43Updated last month
• yasser-alghamdi / winterfell-collection
  Winterfell is a group of windows batch scripts to collect Windows forensics data and perform efficient, and fast incident response and th…
  ☆52Updated 5 years ago
• cmdshiftd / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated 6 months ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 5 years ago
• AbdulRhmanAlfaifi / Rhaegal
  Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…
  ☆41Updated last year
• dhoelzer / Silky
  Web interface for monitoring and interacting with Netflow data stored in Silk repositories.
  ☆13Updated 6 years ago
• chapinb / python-forensics-handbook
  A quick reference guide for python script development in DFIR
  ☆17Updated last year
• swisscom / PowerSponse
  PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.
  ☆38Updated 3 years ago
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆44Updated 4 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 3 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• mattnotmax / update-cyberchef
  CyberChef update scripts in PowerShell & Bash
  ☆16Updated last year
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆31Updated last year
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• gajos112 / Digital-Forensics
  ☆38Updated 3 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 6 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• alph4w0lf / LokiX
  Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks
  ☆25Updated 5 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆68Updated 4 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago