Alternatives and similar repositories for logdissect

Users that are interested in logdissect are comparing it to the libraries listed below

• SpamScope / spamscope
  Fast Advanced Spam Analysis Tool
  ☆306Updated 4 months ago
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆39Updated 8 years ago
• barnumbirr / ares
  A python wrapper around https://cve.circl.lu.
  ☆55Updated 6 months ago
• csirtgadgets / csirtg-mail-py
  The FASTEST way to parse Email
  ☆17Updated 3 years ago
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆267Updated 2 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆56Updated 3 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆116Updated 7 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• IntegralDefense / ACE
  Analysis Correlation Engine
  ☆26Updated 6 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆69Updated 2 years ago
• certtools / intelmq-manager
  IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.
  ☆107Updated 2 weeks ago
• DomainTools / python_api
  DomainTools Official Python API
  ☆86Updated last week
• sublime-security / static-files
  A collection of static files maintained by the Sublime team, primarily used for phishing defense.
  ☆90Updated last week
• paragbaxi / qualysapi
  Qualys API connector.
  ☆104Updated last year
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆123Updated 5 years ago
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆40Updated 7 years ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆155Updated 3 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated 3 weeks ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆106Updated last week
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆162Updated 5 years ago
• heywoodlh / urlscan-py
  Python wrapper for urlscan.io's API
  ☆105Updated 4 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆24Updated 2 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆67Updated 2 years ago
• kamushadenes / cefevent
  ArcSight's Common Event Format library
  ☆39Updated 2 years ago
• mandiant / GeoLogonalyzer
  GeoLogonalyzer is a utility to analyze remote access logs for anomalies such as travel feasibility and data center sources.
  ☆196Updated last year
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆177Updated 7 years ago
• adulau / misp-osint-collection
  Collection of best practices to add OSINT into MISP and/or MISP communities
  ☆65Updated 2 years ago
• opendns / pyinvestigate
  Python module to interface with the OpenDNS Investigate API
  ☆64Updated 3 years ago