Alternatives and similar repositories for graphoscope

Users that are interested in graphoscope are comparing it to the libraries listed below

• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆91Updated last month
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆79Updated 3 years ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆120Updated 3 weeks ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆128Updated 2 years ago
• draugnet / draugnet
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆20Updated 4 months ago
• passivedns / passivedns
  Web Application for domain name monitoring / alerting
  ☆65Updated last year
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 4 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• JHUAPL / Low-Regret-Methodology
  ☆30Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• onyphe / pyonyphe
  ☆15Updated 3 years ago
• D4-project / passive-ssh
  A Passive SSH back-end and scanner.
  ☆104Updated 6 months ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated 3 weeks ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 6 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆49Updated last month
• Xyrodileas / misp-k8s
  Automated deployment of MISP and MISP-Dashboard via K8S and AWS
  ☆19Updated 6 years ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆38Updated 4 months ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 5 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Updated 3 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆212Updated 3 years ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆64Updated 5 years ago
• kaansk / Go-MISPFeedGenerator
  Golang implementation of PyMISP-feedgenerator
  ☆18Updated 3 years ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆133Updated 3 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆62Updated 7 months ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆52Updated last month
• cyentific-rni / stix2.1-coa-playbook-extension
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆23Updated 2 years ago