certeu/droid external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

certeu/droid

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/certeu/droid)

Close

certeu / droidView on GitHubMore

• External links
• Readme badge

A pySigma wrapper to manage detection rules.

☆46Apr 14, 2026Updated 2 weeks ago

Alternatives and similar repositories for droid

Users that are interested in droid are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• CERT-Polska / training-mwdb

  View on GitHub
  MWDB exercises
  ☆20Jan 21, 2025Updated last year
• NextronSystems / iocs

  View on GitHub
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆12Sep 17, 2025Updated 7 months ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• heilancoos / k8s-custom-detections

  View on GitHub
  ☆57Mar 6, 2026Updated last month
• Geekmaster-General / IOCs

  View on GitHub
  Storage for the IOCs I collect
  ☆11Apr 3, 2026Updated 3 weeks ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• cudeso / misp-tip-of-the-week

  View on GitHub
  A collection of tips for using MISP.
  ☆76Dec 11, 2024Updated last year
• initconf / smtp-url-analysis

  View on GitHub
  Extracting and analyzing URLs from Emails for phishing events
  ☆22Mar 28, 2026Updated last month
• AttackIQ / pySigma-backend-kusto

  View on GitHub
  ☆43Nov 28, 2025Updated 5 months ago
• xme / fpc

  View on GitHub
  Full Packet Capture for the Masses
  ☆14Sep 13, 2018Updated 7 years ago
• conexioninversa / WOPR

  View on GitHub
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Apr 22, 2024Updated 2 years ago
• corelight / got_zoom

  View on GitHub
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Apr 15, 2020Updated 6 years ago
• eCrimeLabs / cratos-fastapi

  View on GitHub
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Apr 18, 2026Updated last week
• magicsword-io / sigconverter.io

  View on GitHub
  An opensource sigma conversion tool built using pysigma
  ☆164Apr 22, 2026Updated last week
• NocteDefensor / ludus_tailscale

  View on GitHub
  Ansible Role for Ludus to provision or remove a device to/from a Tailnet.
  ☆14Dec 5, 2025Updated 4 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• epakskape / whpexp

  View on GitHub
  Experiments involving the Windows Hypervisor Platform
  ☆23Jun 24, 2020Updated 5 years ago
• husseinmoghnieh / graphql-polymorphism

  View on GitHub
  ☆12Aug 13, 2018Updated 7 years ago
• j91321 / MISP2memcached

  View on GitHub
  Load MISP events into memcached for log enrichment using logstash
  ☆12Jul 10, 2020Updated 5 years ago
• kazuminn / vulsbeat

  View on GitHub
  Vuls Beater for Elasticsearch - connecting vuls
  ☆17Dec 15, 2020Updated 5 years ago
• AttackIQ / SigmAIQ

  View on GitHub
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆93Nov 3, 2025Updated 5 months ago
• austinsonger / Elastic-Security

  View on GitHub
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Jun 15, 2021Updated 4 years ago
• DissectMalware / MDIExtractor

  View on GitHub
  ☆15Nov 25, 2021Updated 4 years ago
• DevoInc / sightingdb

  View on GitHub
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆17Apr 11, 2024Updated 2 years ago
• fdelorenzi / whatsapp-forensic-exporter

  View on GitHub
  ☆26Apr 7, 2026Updated 3 weeks ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Sergio-Albea-Git / Threat-Hunting-KQL-Queries

  View on GitHub
  ☆43Apr 22, 2026Updated last week
• C0DEbrained / BurpExtenderUtilities

  View on GitHub
  A collection of utilities to simplify the creation of Burp Suite plugins
  ☆22Dec 14, 2023Updated 2 years ago
• theparanoids / rdfp

  View on GitHub
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Jun 20, 2023Updated 2 years ago
• malpedia / malpedia-flossed

  View on GitHub
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆80Jan 6, 2026Updated 3 months ago
• dobin / waasa

  View on GitHub
  Windows Application Attack Surface Analyzer
  ☆24Feb 22, 2024Updated 2 years ago
• gajos112 / PowerShell-Timeliner

  View on GitHub
  ☆12Jun 3, 2022Updated 3 years ago
• Group-IB / pythf

  View on GitHub
  Malware detonation platform Polygon integration
  ☆10Aug 1, 2023Updated 2 years ago
• ZephrFish / ludus-defender-lab

  View on GitHub
  MDE/MDI Defender setup for Ludus
  ☆56Mar 14, 2026Updated last month
• Immersive-Labs-Sec / volatility_plugins

  View on GitHub
  Volatility 3 Plugins
  ☆21Oct 3, 2022Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Steffanic / streamlit-geolocation

  View on GitHub
  A geolocation button for streamlit
  ☆20Nov 18, 2023Updated 2 years ago
• maltegotransforms / opencti-maltego

  View on GitHub
  Maltego local and server integration for OpenCTI
  ☆31Mar 6, 2026Updated last month
• mattkeeler / ansible-nutanix-inventory

  View on GitHub
  A dynamic inventory script for Ansible that interacts with the Nutanix API
  ☆27Feb 10, 2017Updated 9 years ago
• mgreen27 / mcp-velociraptor

  View on GitHub
  VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.
  ☆76Aug 20, 2025Updated 8 months ago
• OTRF / detection-hackathon-apt29

  View on GitHub
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆145Oct 12, 2020Updated 5 years ago
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 5 years ago
• FrankMcGovern / Hidden-Vendor-Security-Advisories

  View on GitHub
  This repo contains a list of vendors that hide their security advisories, alerts, notices, vulnerabilities, and more behind either a payw…
  ☆32May 11, 2024Updated last year