Alternatives and similar repositories for CDAS

Users that are interested in CDAS are comparing it to the libraries listed below

• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• mitre-attack / evals_caldera
  A CALDERA plugin for ATT&CK Evaluations Round 1
  ☆33Updated last year
• tevora-threat / atomic_red_team_gui
  Windows GUI/Execution Engine for Atomic Red Team Atomics
  ☆34Updated 4 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆59Updated 5 years ago
• moullos / Mitigate
  Machine Interrogation To Identify Gaps & Techniques for Execution
  ☆32Updated 2 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 3 months ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 4 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆48Updated 5 years ago
• vmapps / attack2neo
  Import Mitre Att&ck into Neo4j database
  ☆36Updated 2 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 4 years ago
• rabobank-cdc / Blue-ATTACK
  The new name is DeTT&CT
  ☆24Updated 5 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 10 months ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆44Updated last year
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• NVISOsecurity / nviso-cti
  ☆42Updated last year
• ps-interactive / labs_modern_malware_c2
  labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.
  ☆18Updated 2 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• visma-prodsec / columbo
  Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.
  ☆61Updated 3 years ago
• mandiant / goauditparser
  ☆45Updated last year
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 4 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆76Updated 3 weeks ago
• NextronSystems / TA-aurora
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Updated 2 years ago
• Th1ru-M / Windows-Threat-Hunting
  Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine
  ☆22Updated 5 months ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• jacopodl / Pulsar
  Data exfiltration and covert communication tool
  ☆38Updated 2 years ago
• MITRECND / mitrecnd.github.io
  MITRE Shield website
  ☆19Updated 3 years ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 5 years ago