Alternatives and similar repositories for logdissect:

Users that are interested in logdissect are comparing it to the libraries listed below

• SpamScope / spamscope
  Fast Advanced Spam Analysis Tool
  ☆298Updated last year
• kamushadenes / cefevent
  ArcSight's Common Event Format library
  ☆38Updated last year
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆261Updated 2 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆119Updated 4 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆90Updated 7 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆100Updated 2 weeks ago
• csirtgadgets / csirtg-mail-py
  The FASTEST way to parse Email
  ☆17Updated 3 years ago
• sublime-security / static-files
  A collection of static files maintained by the Sublime team, primarily used for phishing defense.
  ☆86Updated last week
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆142Updated last year
• mvelazc0 / Oriana
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆179Updated 3 years ago
• Neo23x0 / evt2sigma
  Log Entry to Sigma Rule Converter
  ☆107Updated 3 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆183Updated last year
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆66Updated 2 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆198Updated 2 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• MISP / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆105Updated last year
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated 2 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆292Updated 3 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆174Updated 7 years ago
• Cisco-Talos / Daemonlogger
  The Official Github Repository of Daemonlogger
  ☆21Updated 3 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆99Updated 3 years ago
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆29Updated last week
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆107Updated last year
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆167Updated 4 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆110Updated 2 weeks ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆60Updated last year