Alternatives and similar repositories for mandiant-ti-client

Users that are interested in mandiant-ti-client are comparing it to the libraries listed below

• MISP / misp-guard
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆14Updated 3 months ago
• seanthegeek / yaramail
  A Python package and command line utility for scanning emails with YARA rules
  ☆20Updated 2 months ago
• NVISOsecurity / nviso-cti
  ☆42Updated last year
• google / threat-team
  IOCs from Google Threat Intelligence
  ☆32Updated 3 weeks ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆97Updated this week
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆32Updated last year
• NextronSystems / iocs
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆10Updated last week
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆69Updated 3 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 10 months ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆15Updated last month
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• KoreLogicSecurity / wmkick
  WMkick is a TCP protocol redirector/MITM tool that targets NTLM authentication message flows in WMI (135/tcp) and Powershell-Remoting/WSM…
  ☆38Updated 3 years ago
• FIRSTdotorg / Vuln4Cast
  A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
  ☆36Updated 4 months ago
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆33Updated last year
• wunderwuzzi23 / gospray
  Active Directory Password Spray Testing Utility in Go
  ☆17Updated last year
• mitre / training
  A CALDERA plugin
  ☆26Updated 10 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• mitre / access
  A CALDERA plugin
  ☆22Updated last week
• google / hashr
  ☆116Updated 3 weeks ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆34Updated 2 weeks ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated 2 years ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated last week
• google / permhash
  ☆43Updated last year
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆17Updated 5 months ago
• usualsuspect / yara_vt_mock
  Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
  ☆21Updated 2 years ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆39Updated this week