Alternatives and similar repositories for graphoscope

Users that are interested in graphoscope are comparing it to the libraries listed below

• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆91Updated 2 weeks ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆79Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆110Updated 2 weeks ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated 11 months ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆211Updated 3 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆61Updated 6 months ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated 2 weeks ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• Xyrodileas / misp-k8s
  Automated deployment of MISP and MISP-Dashboard via K8S and AWS
  ☆19Updated 5 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆170Updated last week
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated 2 years ago
• enisaeu / Reference-Security-Incident-Taxonomy-Task-Force
  This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.
  ☆70Updated 7 months ago
• D4-project / passive-ssh
  A Passive SSH back-end and scanner.
  ☆104Updated 5 months ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated last year
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 5 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 6 years ago
• IRATEAU / sam-bot
  Bot to create MISP events from data in Slack
  ☆17Updated last year
• weslambert / securityonion-misp
  ☆37Updated 4 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆40Updated 7 months ago
• pandora-analysis / pandora
  Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
  ☆274Updated this week
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Updated 3 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• draugnet / draugnet
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆19Updated 2 months ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆133Updated 3 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago