Alternatives and similar repositories for BotHound

Users that are interested in BotHound are comparing it to the libraries listed below

• michael-yip / ThreatTracker
  ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…
  ☆68Updated 10 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 8 years ago
• ntddk / virustream
  A script to track malware IOCs with OSINT on Twitter.
  ☆54Updated last year
• wolfpack1 / intel_collection_tools
  ☆22Updated 7 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 8 years ago
• brianwarehime / goldphish
  A Maltego transform and machine to identify possible phishing vectors using permutated domains
  ☆15Updated 9 years ago
• mpars0ns / scansio-sonar-es
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33Updated 9 years ago
• brianwarehime / otx_transforms
  Transforms for the AlienVault OTX service
  ☆39Updated 8 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 5 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated 8 months ago
• lolnate / vt-hunter
  Automation for VirusTotal
  ☆31Updated 9 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆41Updated 6 years ago
• jaegeral / osint-timelines
  Providing timelines based on OSINT Reports
  ☆32Updated 2 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 11 months ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 5 years ago
• CERT-Bund / misp-warninglists-analyzer
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Updated 7 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆106Updated 6 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆28Updated 4 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆48Updated 8 years ago
• grcninja / Small_Tasks
  Small scripts for doing repeatable tasks
  ☆25Updated 3 years ago
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆15Updated 9 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 6 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆49Updated 7 years ago
• cloudtracer / text2cpe
  Sorta reverse implementation of ShoVAT - Also includes NMAP banner regex results
  ☆17Updated 6 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago