Alternatives and similar repositories for csirt-tooling-best-practices

Users that are interested in csirt-tooling-best-practices are comparing it to the libraries listed below

• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 2 years ago
• vulnerability-lookup / VulnTrain
  A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.
  ☆14Updated this week
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated 3 weeks ago
• eCrimeLabs / cratos-fastapi
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Updated 5 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• ail-project / ail-feeder-twitter
  External twitter feeder for AIL framework
  ☆16Updated 2 years ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆16Updated 2 months ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆17Updated 2 months ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• uforia / exitgather
  Tool for automatic list generation of known TOR and VPN exit nodes
  ☆29Updated last year
• MISP / misp-guard
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆15Updated last month
• 3c7 / infrastructure-tracking-schema
  ☆25Updated 2 years ago
• ail-project / ail-training
  AIL project training materials
  ☆35Updated last month
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆33Updated last year
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated last year
• MISP / misp-takedown
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Updated 4 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• hashlookup / a-ray-grass
  a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…
  ☆14Updated 3 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated this week
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 5 years ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆15Updated 4 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated 2 years ago
• ail-project / Similarius
  Similarius is a Python library to compare web page and evaluate the level of similarity.
  ☆21Updated last week
• adulau / napkin-text-analysis
  Napkin is a simple tool to produce statistical analysis of a text
  ☆12Updated last year
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• kaansk / Go-MISPFeedGenerator
  Golang implementation of PyMISP-feedgenerator
  ☆18Updated 3 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆48Updated last year
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆45Updated 3 years ago
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆16Updated last month
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 7 years ago