Alternatives and similar repositories for ioc-scanner

Users that are interested in ioc-scanner are comparing it to the libraries listed below

• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated last month
• InfoSecInnovations / project-fantastic
  ☆73Updated 2 years ago
• SophosRapidResponse / OSQuery
  ☆88Updated 8 months ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆129Updated 5 years ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆242Updated 7 months ago
• sans-blue-team / sec530-wiki
  ☆55Updated 4 years ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆92Updated last year
• FirmGuardian / backdoors-and-breaches-pcio
  A port of BHIS's Backdoors & Breaches for playingcards.io
  ☆64Updated 2 years ago
• MarkBaggett / 504lab
  Distribution of the SANS SEC504 Windows Cheat Sheet Lab
  ☆75Updated 5 years ago
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆45Updated last month
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆26Updated last year
• activecm / threat-tools
  Tools for simulating threats
  ☆197Updated 2 years ago
• pulsedive / certrss
  ☆120Updated 2 weeks ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆126Updated 5 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆256Updated 2 years ago
• ekristen / cast
  Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux
  ☆131Updated this week
• malwarejake-public / conference-presentations
  Conference presentations
  ☆60Updated 3 weeks ago
• clausing / scripts
  ☆78Updated last week
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆69Updated 2 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆117Updated last year
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆81Updated last year
• corelight / raspi-corelight
  Corelight@Home script
  ☆45Updated 2 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 5 months ago
• thinkst / canary-utils
  Collection of useful Canary tools
  ☆92Updated last week
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆68Updated last year
• Intellisec-Solutions / Sentinel2D3FEND
  This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…
  ☆73Updated 4 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 11 months ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆73Updated 2 months ago
• rootsecdev / Microsoft-Blue-Forest
  Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
  ☆264Updated last year