Alternatives and similar repositories for scansio-sonar-splunk

Users that are interested in scansio-sonar-splunk are comparing it to the libraries listed below

• timfrazier1 / ART_Phantom
  Atomic Red Team App for Phantom
  ☆16Updated 4 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• gr4ym4ntx / attackintel
  A python script to query the MITRE ATT&CK API for tactics, techniques, mitigations, & detection methods for specific threat groups.
  ☆66Updated 6 years ago
• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆21Updated 7 years ago
• Cyb3rWard0g / presentations
  Presentation Slides and Video links
  ☆32Updated 3 years ago
• giangm9 / CrawlerAndValidator
  ☆24Updated 9 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆48Updated 7 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆11Updated 7 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• daveherrald / SA-attck_nav
  Splunk App for MITRE Att&CK Navigator(TM)
  ☆23Updated 4 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• mpars0ns / scansio-sonar-es
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33Updated 9 years ago
• brianwarehime / otx_transforms
  Transforms for the AlienVault OTX service
  ☆39Updated 8 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• olafhartong / SA-Threat-Hunting
  Splunk app for Threat hunting
  ☆15Updated 6 years ago
• hardwaterhacker / CrazyParser
  Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.
  ☆51Updated 9 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 3 years ago
• mohlcyber / MISP-STIX-ESM
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Updated 5 years ago
• open-source-rs / The-Cyber-Intelligence-Analyst-Cookbook
  For storing of the volumes
  ☆4Updated 5 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 6 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• dflabs / NAT
  No-Script Automation Tool
  ☆56Updated 6 years ago
• wolfpack1 / intel_collection_tools
  ☆22Updated 7 years ago
• rev10d / 504vsa
  504 VSAgent
  ☆23Updated 7 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago