Alternatives and similar repositories for ioc-scanner

Users that are interested in ioc-scanner are comparing it to the libraries listed below

• InfoSecInnovations / project-fantastic
  ☆72Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆73Updated 2 years ago
• sans-blue-team / sec530-wiki
  ☆55Updated 4 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆254Updated 2 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆125Updated 4 years ago
• FirmGuardian / backdoors-and-breaches-pcio
  A port of BHIS's Backdoors & Breaches for playingcards.io
  ☆64Updated 2 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆43Updated last year
• MarkBaggett / 504lab
  Distribution of the SANS SEC504 Windows Cheat Sheet Lab
  ☆71Updated 5 years ago
• SophosRapidResponse / OSQuery
  ☆86Updated 5 months ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆227Updated 4 months ago
• CrowdStrike / community
  CrowdStrike's Open Source Policy & Contribution Guide
  ☆44Updated 4 months ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆55Updated 11 months ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆90Updated last year
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆26Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 8 months ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated 2 years ago
• TheHive-Project / Zerofox2TH
  Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆39Updated 5 years ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆124Updated 5 years ago
• pulsedive / certrss
  ☆119Updated last year
• cutaway-security / sawh
  Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…
  ☆53Updated 3 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 2 years ago
• activecm / threat-tools
  Tools for simulating threats
  ☆192Updated last year
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 2 months ago
• MarkBaggett / freq
  This is a repository for freq.py and freq_server.py
  ☆209Updated 5 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆90Updated this week
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆78Updated last year
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆54Updated 3 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 5 years ago
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆115Updated 10 months ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆46Updated last year