Alternatives and similar repositories for mandiant-ti-client

Users that are interested in mandiant-ti-client are comparing it to the libraries listed below

• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 5 months ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• google / hashr
  ☆127Updated 8 months ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆30Updated last year
• openrelik / openrelik-server
  The backend server handling API requests and task management
  ☆55Updated this week
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆61Updated 6 months ago
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆75Updated last month
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆138Updated 2 weeks ago
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆181Updated this week
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆109Updated 2 weeks ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆119Updated last month
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆90Updated 2 months ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆70Updated 3 weeks ago
• seanthegeek / yaramail
  A Python package and command line utility for scanning emails with YARA rules
  ☆21Updated last week
• Squiblydoo / certReport
  A tool to support the reporting of Authenticode Certificates by reducing the effort on individuals to report.
  ☆38Updated last month
• huntresslabs / threat-intel
  This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
  ☆46Updated 3 weeks ago
• mnrkbys / fjta
  FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…
  ☆103Updated 2 weeks ago
• certeu / droid
  A pySigma wrapper to manage detection rules.
  ☆44Updated this week
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆37Updated last month
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆70Updated this week
• NCSC-NL / citrix-2025
  ☆51Updated 5 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆143Updated last month
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆157Updated 8 months ago
• redcanaryco / ansible-atomic-red-team
  This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
  ☆27Updated last year
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆86Updated last month
• humpalum / vscode-sigma
  ☆17Updated 3 months ago
• NextronSystems / iocs
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆12Updated 4 months ago
• Koifman / LUMEN
  Your Browser-based EVTX Companion
  ☆112Updated 2 weeks ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year