Alternatives and similar repositories for IO:

Users that are interested in IO are comparing it to the libraries listed below

• pstirparo / utils
  Different DFIR and CTI utilities
  ☆36Updated 4 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆74Updated 12 years ago
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆63Updated 6 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 6 years ago
• KPN-CISO / AttackMatrix
  AttackMatrix is a Python module and/or webpage to interact with and explore MITRE's ATT&CK's matrices.
  ☆17Updated last year
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• MISP / PyMISPGalaxies
  Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy
  ☆19Updated 3 months ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 7 years ago
• pmelson / viper-scripts
  Various Modules & Scripts for use with Viper Framework
  ☆27Updated 5 years ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated 10 months ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 5 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• davidpany / CDPO
  CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.
  ☆15Updated 7 years ago
• ctxis / cbrcli
  Command line interface to Carbon Black Response
  ☆38Updated 4 years ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 4 years ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆28Updated 3 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆41Updated 6 years ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆20Updated this week
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆63Updated 6 years ago
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆37Updated 7 years ago
• xme / SANS-ISC
  Data related to the SANS Internet Storm Center
  ☆10Updated 6 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 9 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆9Updated 4 months ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 4 years ago
• CyberDefenses / CDI_yara
  A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
  ☆19Updated last year
• blackbagtech / sleuthkit-APFS
  A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.
  ☆26Updated 5 years ago
• MatthewClarkMay / fTriage
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Updated 6 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago