Alternatives and similar repositories for logdissect

Users that are interested in logdissect are comparing it to the libraries listed below

• csirtgadgets / csirtg-mail-py
  The FASTEST way to parse Email
  ☆17Updated 3 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆122Updated 4 years ago
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆39Updated 8 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 5 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆87Updated 6 years ago
• SpamScope / spamscope
  Fast Advanced Spam Analysis Tool
  ☆303Updated 2 months ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆54Updated 2 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆56Updated 3 years ago
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆264Updated 2 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• IntegralDefense / ACE
  Analysis Correlation Engine
  ☆26Updated 6 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆294Updated 4 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆91Updated 8 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆69Updated 2 years ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆152Updated 3 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆116Updated 7 years ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆107Updated 2 weeks ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆168Updated 5 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆110Updated 7 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆48Updated 2 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated this week
• paragbaxi / qualysapi
  Qualys API connector.
  ☆103Updated last year
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆65Updated 2 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• certsocietegenerale / abuse_finder
  Find abuse contacts for observables
  ☆70Updated 2 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• mvelazc0 / Oriana
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆179Updated 4 years ago