Alternatives and similar repositories for cyris:

Users that are interested in cyris are comparing it to the libraries listed below

• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆237Updated 3 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• aptnotes / tools
  Tools to interact with APTnotes reporting/index.
  ☆99Updated 4 years ago
• P4T12ICK / ypsilon
  Automated Use Case Testing
  ☆167Updated 6 years ago
• JPCERTCC / MalConfScan-with-Cuckoo
  Cuckoo Sandbox plugin for extracts configuration data of known malware
  ☆135Updated last year
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆76Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆69Updated 4 years ago
• mitre / brawl-public-game-001
  Data from a BRAWL Automated Adversary Emulation Exercise
  ☆203Updated 4 years ago
• mitre / cascade-server
  CASCADE Server
  ☆265Updated 2 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆61Updated last year
• MISP / misp-book
  User guide of MISP
  ☆266Updated last month
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆136Updated 4 years ago
• mnemonic-no / grafeo
  Open platform for modelling, collection and exchange of knowledge
  ☆157Updated last week
• sjhilt / GasPot
  GasPot Released at Blackhat 2015
  ☆139Updated 9 months ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 6 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆98Updated last month
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆100Updated 2 years ago
• markofu / pcaps
  Public Repository of all Publicly Available Packet Captures that I've used or come across
  ☆170Updated 12 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆259Updated 6 years ago
• JPCERTCC / DetectLM
  Detecting Lateral Movement with Machine Learning
  ☆137Updated 7 years ago
• s-tip / stip-common
  Seamless Threat Intelligence Platform
  ☆47Updated last year
• CyberDefenseInstitute / CDIR
  CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library
  ☆156Updated 3 months ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆241Updated 3 years ago
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆148Updated 2 years ago
• RESOLVN / RTHVM
  Resolvn Threat Hunting Virtual Machine
  ☆138Updated 5 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆150Updated 11 months ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆167Updated 4 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year