Alternatives and similar repositories for tools

Users that are interested in tools are comparing it to the libraries listed below

• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• sroberts / jager
  Hunting IOCs all day every day...
  ☆86Updated last year
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 4 years ago
• xme / dockers
  Miscelaneous Dockers
  ☆46Updated 3 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆110Updated 7 years ago
• adulau / threat-intelligence.eu
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆48Updated 2 years ago
• hadojae / DATA
  Credential Phish Analysis and Automation
  ☆97Updated 6 years ago
• Pwdrkeg / honeyport
  A powershell script for creating a Windows honeyport.
  ☆89Updated 2 months ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago
• phage-nz / infosec-bazaar
  A collection of infosec related scripts and information.
  ☆53Updated 8 months ago
• dutchcoders / lootbox
  Lootbox downloads open directories shared on Twitter.
  ☆35Updated 4 years ago
• conix-security / BTG
  BTG's purpose is to make fast and efficient search on IOC
  ☆70Updated 6 years ago
• open-source-rs / The-Cyber-Intelligence-Analyst-Cookbook
  For storing of the volumes
  ☆4Updated 5 years ago
• teamdfir / concordance
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆67Updated 4 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 8 months ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆57Updated this week
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 4 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated 4 months ago
• kevthehermit / YaraManager
  Web based Manager for Yara Rules
  ☆58Updated 5 years ago
• thomaspatzke / sigma-workshop
  Elasticsearch/Kibana environment and log data for Sigma workshop
  ☆26Updated 5 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆77Updated 2 years ago
• nheijmans / malzoo
  Mass static malware analysis tool
  ☆95Updated 3 years ago