Alternatives and similar repositories for cyber-defense

Users that are interested in cyber-defense are comparing it to the libraries listed below

• Neo23x0 / YARA-rules
  Some YARA rules i will add from time to time
  ☆12Updated 6 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆47Updated 2 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 7 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 7 years ago
• Cyb3rWard0g / CyberWardogLab
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆55Updated 7 years ago
• bartblaze / MaTiRe
  Malware Analysis, Threat Intelligence and Reverse Engineering: LABS
  ☆82Updated 4 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆48Updated last year
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆15Updated 9 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 5 years ago
• MISP / misp-graph
  A tool to convert MISP XML files (events and attributes) into graphs
  ☆20Updated 8 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• kk0m4k / docker-forensics
  ☆23Updated 5 years ago
• Neo23x0 / cyber-chef-recipes
  Recipes for GCHQ's CyberChef Web App
  ☆35Updated 6 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 6 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• eyalmazuz / ThreatIntelligenceCorpus
  ☆32Updated 6 years ago
• mandiant / rvmi-rekall
  Rekall Forensics and Incident Response Framework with rVMI extensions
  ☆33Updated 4 years ago
• adulau / threat-intelligence.eu
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆48Updated 2 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆23Updated 6 years ago
• ntddk / virustream
  A script to track malware IOCs with OSINT on Twitter.
  ☆53Updated last year
• FSecureLABS / Athena
  GUI Tool to generate threat intelligence information in various formats
  ☆43Updated 7 years ago
• kinomakino / Threat-Intelligence-Data
  Snort_rules detection bad actors.
  ☆28Updated 11 months ago
• OTRF / openhunt
  ☆35Updated 4 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• phage-nz / infosec-bazaar
  A collection of infosec related scripts and information.
  ☆53Updated 9 months ago
• Neo23x0 / yara
  The pattern matching swiss knife
  ☆10Updated 4 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆102Updated last week
• deadbits / arcreactor
  open-source intelligence gathering for SIEMs <3
  ☆38Updated 8 years ago