Alternatives and similar repositories for CERT-Alerts

Users that are interested in CERT-Alerts are comparing it to the libraries listed below

• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• DefensiveOrigins / AutoSPFRecon
  Automatic Sender Policy Framework Reconnaissance
  ☆19Updated 6 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 3 years ago
• johnfranolich / Hunting-Scripts
  A collection of hunting and blue team scripts. Mostly others, some my own.
  ☆38Updated 2 years ago
• OneLogicalMyth / toolkit
  Collection of scripts and tools that I created to aid in my testing.
  ☆14Updated 3 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• laconicwolf / random-python
  Various Python scripts that have come in handy but aren't important enough to get their own repository
  ☆22Updated 4 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 10 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• haxrob / CVE-2019-19781
  DFIR notes for Citrix ADC (NetScaler) appliances vulnerable to CVE-2019-19781
  ☆45Updated 5 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆15Updated 9 years ago
• mdsecactivebreach / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆14Updated 7 years ago
• DomainTools / DomainCAT
  Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
  ☆43Updated 3 years ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆17Updated 3 years ago
• NVISOsecurity / nviso-cti
  ☆42Updated last year
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• mvelazc0 / Talks-Presentations
  Resource links (video, slides & code) for my conference talks | presentations | workshops
  ☆14Updated 4 months ago
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 6 years ago
• Manticore-Platform / manticore-cli
  Manticore Adversary Emulation Cli
  ☆48Updated 4 years ago
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 6 years ago
• ValcanK / HomeLab
  ☆20Updated 4 years ago
• tstillz / cbr-timeliner
  Quick script to build host or investigation timelines using Carbon Black Response
  ☆12Updated 6 years ago
• DefensiveOrigins / APT-Lab-FastOpticsSetup
  Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform
  ☆13Updated 4 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• joswr1ght / pcaphistogram
  Generate a histogram of TCP and UDP payload bytes from a pcap file
  ☆24Updated 2 years ago
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• akapv / Sysmon_to_AdvancedHunting_KQL
  ☆10Updated 4 years ago