Alternatives and similar repositories for kev-data:

Users that are interested in kev-data are comparing it to the libraries listed below

• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated 11 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆101Updated this week
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆75Updated 2 weeks ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆193Updated this week
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆38Updated last week
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆91Updated last year
• runreveal / sigmalite
  ☆42Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆46Updated 5 months ago
• elastic / SWAT
  Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…
  ☆164Updated 6 months ago
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆74Updated 11 months ago
• Censys-Research / censeye
  ☆136Updated last month
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆51Updated 5 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆162Updated 3 months ago
• wiz-sec-public / wiz-research-iocs
  ☆40Updated last month
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆53Updated last year
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆71Updated 11 months ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆89Updated 3 weeks ago
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆26Updated last month
• korniko98 / pivot-atlas
  ☆87Updated 2 months ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆28Updated last year
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆87Updated 5 months ago
• Permiso-io-tools / cloudtail
  ☆29Updated 5 months ago
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆74Updated last week
• xvnpw / sec-docs
  An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects
  ☆27Updated last month
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆81Updated last month
• cisagov / parsnip
  ☆71Updated 2 months ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆107Updated 6 months ago
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆32Updated 2 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆72Updated last week
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆51Updated last week