Alternatives and similar repositories for csirt-tooling-best-practices

Users that are interested in csirt-tooling-best-practices are comparing it to the libraries listed below

• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 2 years ago
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated 3 weeks ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• MISP / misp-guard
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆14Updated this week
• ail-project / ail-feeder-twitter
  External twitter feeder for AIL framework
  ☆16Updated 2 years ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆16Updated 2 weeks ago
• eCrimeLabs / cratos-fastapi
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Updated 3 months ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆16Updated last week
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• vulnerability-lookup / VulnTrain
  A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.
  ☆12Updated this week
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆15Updated 4 years ago
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated last year
• uforia / exitgather
  Tool for automatic list generation of known TOR and VPN exit nodes
  ☆29Updated last year
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆17Updated 4 months ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆12Updated 2 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated 2 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆45Updated 3 years ago
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆33Updated last year
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆14Updated this week
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 4 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated last year
• MISP / misp-grafana
  A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
  ☆18Updated last year
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated 3 weeks ago
• abusech / YARAify
  Open YARA scan- and search engine
  ☆24Updated 4 months ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆48Updated last year
• ail-project / Similarius
  Similarius is a Python library to compare web page and evaluate the level of similarity.
  ☆20Updated 2 weeks ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago