Alternatives and similar repositories for broworkshop

Users that are interested in broworkshop are comparing it to the libraries listed below

• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 5 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆21Updated 8 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• dichotomy / scorebot
  Scoring Engine for CTF competitions
  ☆48Updated 2 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Updated 7 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated this week
• jobroche / Pastepwnd
  Identify compromised domains or emails. A python based HIBP and HackedEmails wrapper
  ☆38Updated 6 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 11 months ago
• threatexpress / portplow
  PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…
  ☆55Updated 9 months ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• swimlane / CLAW
  A packer utility to create and capture DFIR Image for use AWS & Azure
  ☆15Updated 5 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• NetSPI / SpoofSpotter
  A tool to catch spoofed NBNS responses.
  ☆50Updated 7 years ago
• MattCarothers / uhp
  Universal Honey Pot
  ☆29Updated 2 weeks ago
• da667 / dns2snort
  AYY LMAO
  ☆22Updated 9 years ago
• target / attack-navigator-docker
  A simple Docker container that serves the MITRE ATT&CK Navigator web app
  ☆27Updated 2 years ago
• krmaxwell / dns-exfiltration
  Exfiltrate files via DNS
  ☆95Updated 12 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆44Updated 5 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 6 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• ciscocsirt / dhp
  Simple Docker Honeypot server emulating small snippets of the Docker HTTP API
  ☆31Updated 4 years ago
• mvelazc0 / PurpleSpray
  PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…
  ☆51Updated 6 years ago
• Cymmetria / honeycomb
  An extensible honeypot framework
  ☆95Updated 3 years ago
• Cymmetria / honeycomb_plugins
  The plugin repository for Honeycomb, the honeypot framework by Cymmetria
  ☆26Updated last year