Alternatives and similar repositories for graphoscope

Users that are interested in graphoscope are comparing it to the libraries listed below

• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆79Updated 3 years ago
• draugnet / draugnet
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆20Updated 5 months ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Updated 3 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆91Updated this week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆123Updated this week
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆128Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 3 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆175Updated last month
• passivedns / passivedns
  Web Application for domain name monitoring / alerting
  ☆64Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆212Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 5 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• D4-project / passive-ssh
  A Passive SSH back-end and scanner.
  ☆104Updated 7 months ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated this week
• JHUAPL / Low-Regret-Methodology
  ☆30Updated 4 years ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆39Updated 5 months ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆49Updated 3 weeks ago
• Xyrodileas / misp-k8s
  Automated deployment of MISP and MISP-Dashboard via K8S and AWS
  ☆19Updated 6 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆42Updated 2 weeks ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• melicertes / csp
  The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…
  ☆32Updated 4 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 4 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 6 years ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated 2 months ago
• enisaeu / IRtools
  The aim of this repository is to provide a list of examples of tools, sources and measures available to incident response teams
  ☆64Updated 5 years ago
• stricaud / sightingdb
  SightingDB is a database for Sightings
  ☆22Updated 2 years ago