Alternatives and similar repositories for neo

Users that are interested in neo are comparing it to the libraries listed below

• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated last month
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated last year
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆41Updated 5 years ago
• weslambert / securityonion-strelka
  ☆13Updated 6 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated last year
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• Invoke-IR / PowerForensicsPortable
  ☆33Updated last year
• Cyb3rWard0g / CyberWardogLab
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆55Updated 7 years ago
• codingo / Ransomware-Json-Dataset
  Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ran…
  ☆72Updated 2 years ago
• toolswatch / DPE
  DPE - Default Password Enumeration
  ☆36Updated 12 years ago
• paranoidninja / Threat-Hunting
  This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…
  ☆56Updated 7 years ago
• nogoodconfig / pyarascanner
  A simple many-rules to many-files YARA scanner for incident response or malware zoos.
  ☆26Updated 7 years ago
• WiredPulse / AutomatedProfiler
  Automated forensics written in PowerShell
  ☆34Updated 6 years ago
• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆21Updated 8 years ago
• trustedsec / RisingSun
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Updated 4 years ago
• sparcflow / SlashPaulHoldings
  Custom scripts used during the scenario
  ☆21Updated 4 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 5 years ago
• grayfold3d / POSH-Triage
  Tools for parsing Forensic images
  ☆41Updated 6 years ago
• honeydbio / honeydb-python
  HoneyDB Python Module
  ☆14Updated last year
• noncetonic / phishpoll
  PHP Phishing Framework
  ☆28Updated 11 years ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆17Updated 7 years ago
• thirdeyeintelligence / Tools-mindmap
  mindmap created for tools can be used during analysis/investigation
  ☆27Updated 8 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 10 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 8 years ago
• mandiant / DFUR-Splunk-App
  The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.
  ☆13Updated 5 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆28Updated 6 years ago
• da667 / dns2snort
  AYY LMAO
  ☆22Updated 9 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• b3b0 / snipehunt
  🦉🔬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.
  ☆11Updated 5 years ago