Alternatives and similar repositories for greybox:

Users that are interested in greybox are comparing it to the libraries listed below

• cmu-sei / topgen
  Scripts to generate an Internet simulation
  ☆35Updated 3 months ago
• Robicus / gse-study
  The gse-study repo was assembled to serve as a consolidated, and comprehensive, study solution for the SANS GSE exam.
  ☆25Updated 6 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆50Updated 2 months ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆86Updated 2 years ago
• DevoInc / pCraft
  pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.
  ☆89Updated 7 months ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• securitydistractions / elastimispstash
  ☆29Updated 3 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 4 years ago
• theflakes / Ultimate-Forensics-VM
  Evolving directions on building the best Open Source Forensics VM
  ☆159Updated 6 years ago
• DefensiveOrigins / ps-whitenoiseweb
  Powershell - web traffic whitenoise generator
  ☆46Updated 4 years ago
• high101bro / PoSh-EasyWin
  PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs
  ☆46Updated 10 months ago
• sans-blue-team / sec555-wiki
  ☆77Updated 5 years ago
• oneoffdallas / check_ioc
  Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …
  ☆76Updated 6 years ago
• sans-blue-team / sec530-wiki
  ☆53Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 2 years ago
• activecm / devprof
  Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.
  ☆16Updated 4 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated 9 months ago
• MarkBaggett / werejugo
  Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
  ☆91Updated 3 years ago
• cmu-sei / TopoMojo-v1
  Virtual Lab builder and player
  ☆15Updated 3 years ago
• wadingthrulogs / Talks
  All my slides for any talks
  ☆23Updated last month
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• sevickson / osquery_tables_graph
  Repository containing Jupyter Notebooks for working with OSQuery tables and data
  ☆16Updated 4 years ago