Alternatives and similar repositories for ioc-scanner

Users that are interested in ioc-scanner are comparing it to the libraries listed below

• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated 2 months ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆130Updated 5 years ago
• InfoSecInnovations / project-fantastic
  ☆73Updated 2 years ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆245Updated 8 months ago
• SophosRapidResponse / OSQuery
  ☆88Updated 9 months ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆257Updated 2 years ago
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆47Updated 3 weeks ago
• rootsecdev / Microsoft-Blue-Forest
  Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
  ☆265Updated last year
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆92Updated 2 years ago
• sans-blue-team / sec530-wiki
  ☆55Updated 4 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆88Updated this week
• MarkBaggett / ese-analyst
  This is a set of tools for doing forensics analysis on Microsoft ESE databases.
  ☆126Updated 3 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆60Updated 2 months ago
• MarkBaggett / 504lab
  Distribution of the SANS SEC504 Windows Cheat Sheet Lab
  ☆76Updated 5 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆46Updated 2 years ago
• EricZimmerman / Get-ZimmermanTools
  Get all my software
  ☆180Updated 6 months ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆119Updated last year
• pulsedive / certrss
  ☆120Updated last month
• target / Threat-Hunting
  Jupyter notebooks for threat hunting
  ☆60Updated 9 months ago
• Neo23x0 / BlueLedger
  A list of my personal projects
  ☆177Updated 3 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆94Updated last week
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• TheHive-Project / Zerofox2TH
  Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆45Updated 5 years ago
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆76Updated 10 months ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆69Updated last year
• FirmGuardian / backdoors-and-breaches-pcio
  A port of BHIS's Backdoors & Breaches for playingcards.io
  ☆64Updated 2 years ago
• activecm / zcutter
  Extracts fields from zeek logs, compatible with zeek-cut
  ☆25Updated last year
• Intellisec-Solutions / Sentinel2D3FEND
  This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…
  ☆74Updated 4 years ago
• cutaway-security / sawh
  Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…
  ☆55Updated 4 years ago
• JSCU-NL / logging-essentials
  A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.
  ☆290Updated 4 years ago