Alternatives and similar repositories for GOSINT:

Users that are interested in GOSINT are comparing it to the libraries listed below

• HurricaneLabs / machinae
  Machinae Security Intelligence Collector
  ☆508Updated 9 months ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆463Updated 6 years ago
• keithjjones / hostintel
  A modular Python application to collect intelligence for malicious hosts.
  ☆264Updated 3 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆427Updated last year
• Ptr32Void / OSTrICa
  ☆308Updated 7 years ago
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆381Updated 5 years ago
• AlienVault-OTX / ApiV2
  Version 2 of the ThreatCrowd API
  ☆269Updated last year
• toolswatch / vFeed
  The Correlated CVE Vulnerability And Threat Intelligence Database API
  ☆939Updated 3 years ago
• cylance / CyBot
  Open Source Threat Intelligence Chat Bot
  ☆321Updated 4 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• 0x4D31 / honeybits
  A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…
  ☆273Updated 5 years ago
• praetorian-inc / purple-team-attack-automation
  Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
  ☆720Updated 5 years ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 6 years ago
• aplura / Tango
  Honeypot Intelligence with Splunk
  ☆254Updated 6 years ago
• GreyNoise-Intelligence / api.greynoise.io
  Code + documentation for the public GreyNoise API
  ☆314Updated 3 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆846Updated last year
• foospidy / HoneyPy
  A low to medium interaction honeypot.
  ☆463Updated 11 months ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆276Updated last year
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆619Updated 5 years ago
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆837Updated 4 months ago
• SekoiaLab / Fastir_Collector
  ☆507Updated 4 years ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆149Updated 9 months ago
• endgameinc / RTA
  ☆1,062Updated 5 years ago
• SekoiaLab / Fastir_Collector_Linux
  ☆175Updated 4 years ago
• mandiant / ioc_writer
  ☆201Updated last year
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆260Updated 7 years ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆246Updated 3 months ago
• TryCatchHCF / DumpsterFire
  "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …
  ☆1,003Updated 4 years ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆477Updated 3 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆241Updated 3 years ago