Alternatives and similar repositories for triage:

Users that are interested in triage are comparing it to the libraries listed below

• StevenD33 / Lab-DFIR-SOC
  ☆65Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆74Updated last year
• BlackPerl-DFIR / IR-Cheatsheets
  This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team
  ☆18Updated 5 months ago
• giorgioditizio / APTs-database
  A repository with data about APTs
  ☆11Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆51Updated 3 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 3 weeks ago
• MalwareHunters / vultriever
  ☆58Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 11 months ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated last year
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆36Updated 9 months ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆26Updated 11 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆51Updated last year
• casterbyte / Nihilist
  Cisco IOS Security Inspector
  ☆22Updated this week
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆60Updated 8 months ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated last year
• brokensound77 / LoFP
  Living off the False Positive!
  ☆35Updated 2 months ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 6 months ago
• d4rk-d4nph3 / Ransim
  Ransomware Simulator for testing Blue Team Detections
  ☆37Updated 2 years ago
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆39Updated 2 weeks ago
• nrrpinto / inquisitor
  Forensics artifacts collection
  ☆19Updated 3 years ago
• jaredcatkinson / MalwareMorphology
  ☆80Updated 4 months ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆93Updated 2 years ago
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆33Updated 9 months ago
• ST1LLY / dc-sonar
  Analyzing AD domains for security risks related to user accounts
  ☆63Updated 2 years ago
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 3 years ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆24Updated 7 months ago
• michael2to3 / c2-search-netlas
  Search for c2 servers based on netlas
  ☆39Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 3 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated last year