Alternatives and similar repositories for meioc

Users that are interested in meioc are comparing it to the libraries listed below

• korniko98 / pivot-atlas
  ☆92Updated last month
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆89Updated last week
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆96Updated 7 months ago
• Abjuri5t / SarlackLab
  ☆33Updated this week
• mnrkbys / fjta
  FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…
  ☆75Updated last week
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆85Updated 7 months ago
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆51Updated 8 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 6 months ago
• ail-project / ail-training
  AIL project training materials
  ☆31Updated last month
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated 7 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 3 months ago
• eCrimeLabs / MISP-PurgeEvents
  Cleanup of older MISP events can require some work until now
  ☆26Updated 2 years ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆151Updated 9 months ago
• nasbench / Eventlog_Compendium
  The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.
  ☆45Updated 2 months ago
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆30Updated 2 months ago
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆61Updated 11 months ago
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆93Updated last year
• khyrenz / parseusbs
  Parses USB connection artifacts from offline Registry hives
  ☆99Updated 2 weeks ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆84Updated 2 weeks ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 6 months ago
• ekky19 / osint
  Have you ever wanted to search a link or IP address on multiple OSINT pages at once?
  ☆51Updated 3 weeks ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆67Updated last year
• 00010111 / smbtimeline
  ☆35Updated 8 months ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆80Updated 5 years ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆85Updated 4 months ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated last month
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆69Updated 3 weeks ago
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆107Updated 8 months ago
• Fadavvi / Yara-Repo
  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…
  ☆27Updated last year