Alternatives and similar repositories for usersim

Users that are interested in usersim are comparing it to the libraries listed below

• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆110Updated 7 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 7 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 8 years ago
• daniel-gallagher / cuckoo-autoinstall
  Automated install scripts for Cuckoo sandbox
  ☆38Updated 8 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆82Updated 8 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 10 years ago
• DBHeise / VM_Setup
  A collection of scripts to initialize a windows VM to run all the malwares!
  ☆107Updated 5 years ago
• CERT-W / certitude
  The Seeker of IOC
  ☆131Updated 5 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 4 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆64Updated 10 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• Pwdrkeg / honeyport
  A powershell script for creating a Windows honeyport.
  ☆90Updated 8 months ago
• oneoffdallas / check_ioc
  Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …
  ☆80Updated 7 years ago
• MotiBa / Sysmon
  Sysmon configuration
  ☆65Updated 7 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 9 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• conix-security / BTG
  BTG's purpose is to make fast and efficient search on IOC
  ☆71Updated 7 years ago
• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆56Updated 10 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• exp0se / bro-intel-generator
  Script for generating Bro intel files from pdf or html reports
  ☆77Updated 10 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆83Updated 10 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated 2 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆85Updated 3 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆148Updated 8 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 7 years ago
• JavelinNetworks / IR-Tools
  IR-Tools - PowerShell tools for IR
  ☆130Updated 8 years ago
• xme / toolbox
  Miscelaneous useful scripts for my day to day projects
  ☆123Updated 5 years ago
• wolfpack1 / threatrecon
  API Tools
  ☆27Updated 9 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated 2 months ago