Alternatives and similar repositories for neo

Users that are interested in neo are comparing it to the libraries listed below

• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 7 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 6 months ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• Invoke-IR / PowerForensicsPortable
  ☆32Updated 5 months ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆15Updated 9 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 7 years ago
• gburkle / Stalker
  Threat Intel and Incident Reponse
  ☆10Updated 6 years ago
• b3b0 / snipehunt
  🦉🔬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.
  ☆11Updated 5 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Updated 7 years ago
• darkoperator / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…
  ☆12Updated 8 years ago
• rshipp / ir-triage-toolkit
  Create an incident response triage toolkit for use with Windows or Linux.
  ☆17Updated 4 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 8 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 4 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 5 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• Cyb3rWard0g / CyberWardogLab
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆54Updated 7 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 7 months ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• redcanaryco / cb-response-smb1-utility
  A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
  ☆15Updated 5 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• GoSecure / gophish-cli
  Gophish Python cli to perform huge phishing campaigns
  ☆40Updated 6 years ago
• hjunker / ProcessBouncer
  ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…
  ☆24Updated 4 years ago
• securycore / ThreatHunting
  Powershell collection designed to assist in Threat Hunting Windows systems.
  ☆27Updated 7 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 6 years ago
• Cyb3rWard0g / docker-caldera
  Docker Container to deploy Mitre Caldera Automated Adversary Emulation System
  ☆26Updated 4 years ago
• weslambert / securityonion-strelka
  ☆13Updated 5 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 10 years ago
• ytisf / polarising-pine
  Set of PoC for exploits for QRadar SIEM
  ☆15Updated 7 years ago