Alternatives and similar repositories for mandiant-ti-client:

Users that are interested in mandiant-ti-client are comparing it to the libraries listed below

• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆86Updated this week
• google / threat-team
  IOCs from Google's Threat Analysis Group (TAG)
  ☆30Updated 2 months ago
• google / hashr
  ☆114Updated last month
• google / permhash
  ☆43Updated 10 months ago
• seanthegeek / yaramail
  A Python package and command line utility for scanning emails with YARA rules
  ☆20Updated last week
• mitre / training
  A CALDERA plugin
  ☆25Updated 7 months ago
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆17Updated 2 months ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆75Updated last year
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆59Updated last month
• google / picatrix
  Picatrix is a library designed to help security analysts in a notebook environment, such as colab or jupyter.
  ☆47Updated 8 months ago
• huntresslabs / threat-intel
  This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
  ☆35Updated 2 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆67Updated 3 weeks ago
• embee-research / CyberChef
  ☆14Updated last year
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 3 years ago
• mandiant / goauditparser
  ☆44Updated last year
• fox-it / cisco-ios-xe-implant-detection
  Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)
  ☆37Updated last year
• Neo23x0 / defensive-project-ideas
  Ideas for projects for defensive research or blue teaming
  ☆10Updated last year
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆14Updated 4 years ago
• Yamato-Security / Presentations
  ☆18Updated 3 months ago
• NextronSystems / thor-manual
  THOR APT Scanner User Manual
  ☆18Updated last week
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆101Updated 5 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• Fadavvi / Yara-Repo
  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…
  ☆26Updated last year
• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆52Updated 8 months ago
• NextronSystems / iocs
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆10Updated 4 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆75Updated this week
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆56Updated 2 months ago
• TobySalusky / cont3xt
  Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…
  ☆37Updated 11 months ago