Alternatives and similar repositories for meioc

Users that are interested in meioc are comparing it to the libraries listed below

• korniko98 / pivot-atlas
  ☆100Updated 3 weeks ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆57Updated 10 months ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆116Updated last year
• Abjuri5t / SarlackLab
  ☆34Updated last month
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆107Updated 2 weeks ago
• joeavanzato / crackdown
  Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
  ☆17Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆91Updated last year
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆97Updated last year
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆53Updated last year
• NextronSystems / nextron-helper-scripts
  Public tools, scripts or code snippets that can help when working with our products
  ☆46Updated 8 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆75Updated 3 weeks ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 4 months ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆55Updated 3 weeks ago
• ThreatMon / ThreatMon-Daily-C2-Feeds
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆69Updated 2 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆160Updated 8 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆89Updated 2 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆73Updated last year
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆63Updated last year
• mnrkbys / fjta
  FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…
  ☆98Updated last week
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆109Updated last year
• OMENScan / AChoirX
  ReWrite of AChoir in Go for Cross Platform forensic artifact collection and processing
  ☆42Updated this week
• muchdogesec / obstracts
  Turn any blog into structured threat intelligence.
  ☆43Updated last week
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆116Updated last month
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• ThreatMon / ThreatMon-Reports-IOC
  ☆52Updated 4 months ago
• svch0stz / velociraptor-detections
  ☆22Updated 2 years ago
• ail-project / ail-training
  AIL project training materials
  ☆38Updated 5 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆117Updated 2 weeks ago