Alternatives and similar repositories for aptdetector

Users that are interested in aptdetector are comparing it to the libraries listed below

• thirdeyeintelligence / IOCs-in-CSV-format
  The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research
  ☆12Updated 7 years ago
• honeydbio / honeydb-python
  HoneyDB Python Module
  ☆13Updated last year
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆37Updated 9 years ago
• glennzw / exphil
  Data exfiltration PoC scripts
  ☆24Updated 9 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 6 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• codewatchorg / gophish
  GoPhish is a phishing script that enables rapid deployment of phishing sites.
  ☆30Updated 6 years ago
• johnnykv / mnemosyne
  Normalizer for honeypot data.
  ☆45Updated 9 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆21Updated 6 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• caschnee / misp-use-cases
  ☆14Updated 7 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 3 years ago
• MalwareSoup / MitreAttack
  Python wrapper for the Mitre ATT&CK framework API
  ☆30Updated 7 years ago
• Hestat / intel-sharing
  Repository of Information sharing on threats and indicators
  ☆12Updated 5 years ago
• PolitoInc / Yara-Scanner
  Yara intergrated into BurpSuite
  ☆48Updated 8 years ago
• truekonrads / bigear
  Opening CobaltStrike to a wider world
  ☆8Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 8 years ago
• proactivecndosint2012 / OSINTREALTIMECND
  Proactive Computer Network Defense Strategy - OSINT Real Time Threat Stream - Social/DarkNet - Data Mining
  ☆32Updated 12 years ago
• mitre / unfetter-mediawiki-vagrant
  A virtual MediaWiki development environment, built on Vagrant, VirtualBox, and Puppet.
  ☆16Updated 8 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆48Updated 8 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆43Updated 8 years ago
• blaverick62 / SIREN
  Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network
  ☆13Updated 7 years ago