Alternatives and similar repositories for SA-dmarc

Users that are interested in SA-dmarc are comparing it to the libraries listed below

• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• SMAPPER / NXLog-AutoConfig
  ☆49Updated 4 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• jorritfolmer / TA-dmarc
  Add-on for ingesting DMARC aggregate reports into Splunk
  ☆15Updated 2 years ago
• georgestarcher / Splunk-ESIntel-KVStore
  Splunk csv to KVStore ES Threat Intel
  ☆11Updated 9 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆73Updated 2 years ago
• zeek / cheat-sheet
  The Bro/Zeek language cheat sheet
  ☆52Updated 12 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• UNIT777 / Email2TheHive
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Updated 8 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆20Updated 3 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆16Updated 9 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆52Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• philhagen / ip2geo
  Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses
  ☆101Updated 5 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆73Updated 2 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆43Updated 5 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• kidcrash22 / Sysmon-Threat-Intel
  ☆13Updated 7 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• bestpractical / rtir
  ☆138Updated this week
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago