Alternatives and similar repositories for gaffer-tools

Users that are interested in gaffer-tools are comparing it to the libraries listed below

• gchq / event-logging-schema
  Event Logging is an XML Schema for describing the auditable events generated by computer systems, hardware devices and access control sys…
  ☆25Updated 7 months ago
• gchq / Palisade
  A Tool for Complex and Scalable Data Access Policy Enforcement
  ☆97Updated 4 years ago
• nsacyber / WALKOFF-Apps
  WALKOFF-enabled applications. #nsacyber
  ☆143Updated 6 years ago
• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 5 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• terry-wen / Network-Visualization-Project
  Network visualizer tool built using Processing
  ☆24Updated 4 years ago
• marcusbakker / GreyNoise
  Python tool build around GreyNoise's alpha/public API
  ☆11Updated 6 years ago
• gchq / event-logging
  A Java JAXB library for generating events conforming to the Event Logging XML Schema
  ☆16Updated last year
• Security-Onion-Solutions / securityonion-docker-hh
  ☆21Updated 5 years ago
• CIRCL / pcapdj
  pcapdj - dispatch pcap files
  ☆46Updated 5 years ago
• nsacyber / Splunk-Assessment-of-Mitigation-Implementations
  Automatically scores how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
  ☆76Updated 9 years ago
• adulau / misp-osint-collection
  Collection of best practices to add OSINT into MISP and/or MISP communities
  ☆66Updated 2 years ago
• MISP / MISP-maltego
  Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
  ☆182Updated last year
• AlienVault-OTX / OTX-Apps-Bro-IDS
  Alienvault OTX Bro IDS Connector
  ☆77Updated 10 years ago
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆85Updated 9 months ago
• nsacyber / unfetter
  Identifies defensive gaps in security posture by leveraging Mitre's ATT&CK framework. #nsacyber
  ☆164Updated 5 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆49Updated 3 years ago
• 7h3rAm / rudra
  A developer-friendly framework for exhaustive analysis of (PCAP and PE) files.
  ☆15Updated 8 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• nsacyber / Certificate-Authority-Situational-Awareness
  Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber
  ☆113Updated 9 years ago
• AlienVault-OTX / ThreatCrowd-Maltego
  Maltego transforms for the ThreatCrowd search API
  ☆49Updated 7 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆80Updated last year
• deadbits / Analyst-CaseFile
  Maltego CaseFile entities for information security investigations, malware analysis and incident response
  ☆66Updated 7 years ago
• nsacyber / PRUNE
  Logs key Windows process performance metrics. #nsacyber
  ☆67Updated 3 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated 2 weeks ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• nsacyber / LOCKLEVEL
  A prototype that demonstrates a method for scoring how well Windows systems have implemented some of the top 10 Information Assurance mit…
  ☆99Updated 9 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• sroberts / sapho
  A homebrewed cyber threat intelligence solution
  ☆20Updated 13 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 5 years ago