Alternatives and similar repositories for XFD

Users that are interested in XFD are comparing it to the libraries listed below

• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆151Updated last week
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆81Updated 2 weeks ago
• monarc-project / MonarcAppFO
  MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
  ☆111Updated 2 weeks ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 4 months ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 5 years ago
• enisaeu / CNW
  Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…
  ☆91Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated last year
• SophosRapidResponse / OSQuery
  ☆87Updated 7 months ago
• juaromu / wazuh-misp
  ☆19Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆76Updated 2 weeks ago
• GEANT / TRANSITS
  Home for TRANSITS materials
  ☆25Updated last year
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆45Updated last month
• kraven-security / python-threat-hunting-tools
  This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…
  ☆19Updated last year
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆235Updated 3 weeks ago
• wagov / wasocshared
  WA Cyber Security Unit (DGOV Technical) site
  ☆44Updated this week
• CybercentreCanada / howler
  Elevate your Security Operations Center's efficiency with Howler, the cutting-edge alert triage platform tailored for today's SOC demands…
  ☆40Updated this week
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆93Updated 6 months ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆108Updated 5 years ago
• juaromu / wazuh-opencti
  ☆39Updated 2 years ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated this week
• counteractive / security-controls
  ☆48Updated 2 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆126Updated 5 years ago
• ail-project / ail-training
  AIL project training materials
  ☆37Updated 3 months ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆49Updated last year
• thinkst / canary-utils
  Collection of useful Canary tools
  ☆92Updated 2 weeks ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆131Updated last year
• cisagov / network-architecture-verification-and-validation
  The NAVV (Network Architecture Verification and Validation) tool creates a spreadsheet for network traffic analysis from PCAP data and Ze…
  ☆35Updated last year
• cisagov / ACID
  ☆72Updated 6 months ago
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆166Updated this week
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆30Updated last year