Alternatives and similar repositories for uls:

Users that are interested in uls are comparing it to the libraries listed below

• OktaSecurityLabs / CheatSheets
  ☆33Updated 6 years ago
• dhoelzer / VisualSniff
  A reimplementation of the EtherApe style display for OS X. Note that this is not a fork of EtherApe. Written in a kinder, gentler, age …
  ☆15Updated 6 years ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆32Updated 2 years ago
• chandunsa / IRP
  Incident Response Playbooks
  ☆14Updated 5 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 7 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• PaloAltoNetworks / minemeld-docker
  Official Palo Alto Networks MineMeld docker
  ☆17Updated 4 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆21Updated 2 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• DefensiveOrigins / AutoSPFRecon
  Automatic Sender Policy Framework Reconnaissance
  ☆18Updated 6 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆43Updated 4 years ago
• swisscom / splunk-addon-powershell
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Updated 4 years ago
• tenable / audit_scripts
  Scripts to help work with configuration audit files
  ☆84Updated last year
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 3 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 3 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 9 years ago
• target / attack-navigator-docker
  A simple Docker container that serves the MITRE ATT&CK Navigator web app
  ☆26Updated last year
• awhogan / CSIntel
  CrowdStrike Threat Intelligence
  ☆34Updated 2 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• rkovar / sunburstlookups
  Quick lookup files for SUNBURST Backdoor
  ☆12Updated 4 years ago
• 0sm0s1z / Tiberium
  ☆21Updated last year
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• laconicwolf / random-python
  Various Python scripts that have come in handy but aren't important enough to get their own repository
  ☆22Updated 3 years ago
• corelight / zerologon
  Zeek package to detect Zerologon
  ☆11Updated 3 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago