Alternatives and similar repositories for tigma

Users that are interested in tigma are comparing it to the libraries listed below

• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 3 years ago
• infosec-intern / vscode-yara
  VSCode extension for the YARA pattern matching language
  ☆64Updated last year
• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 5 years ago
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆16Updated 4 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• Neo23x0 / xorex
  XOR Key Extractor
  ☆50Updated 9 months ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• ruppde / yara_rules
  Yara rules
  ☆21Updated 2 years ago
• Karneades / SigmaFilterCheck
  Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)
  ☆15Updated 4 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆96Updated 2 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 3 years ago
• robindimyan / apthowto
  Liberating dem proprietary APT implants
  ☆20Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• chaoticmachinery / mass_triage_tools
  Mass Triage Tools
  ☆20Updated 2 months ago
• avuko / kathe
  A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.
  ☆19Updated 3 years ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆20Updated last week
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 6 years ago
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 3 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆22Updated 3 years ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated last year
• caliskanfurkan / awesome-security-analytics
  A repo for security analytics & threat hunting resources
  ☆21Updated 6 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 6 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago