Alternatives and similar repositories for certwatch

Users that are interested in certwatch are comparing it to the libraries listed below

• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• fygrave / ndf
  Network Defender Toolkit
  ☆18Updated 12 years ago
• amv42 / sshd-honeypot
  ☆26Updated 6 years ago
• nccgroup / SSHession
  The SSH Multiplex Backdoor Tool
  ☆65Updated 6 years ago
• D4-project / passive-ssh
  A Passive SSH back-end and scanner.
  ☆104Updated 4 months ago
• CIRCL / IMAP-Proxy
  Modular IMAP proxy (including PyCIRCLeanMail and MISP forward modules)
  ☆31Updated 7 years ago
• Cymmetria / honeycomb_plugins
  The plugin repository for Honeycomb, the honeypot framework by Cymmetria
  ☆26Updated 2 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• passivetotal / HT_infra
  VPS infrastructure found in HT dumps
  ☆26Updated 10 years ago
• s0lst1c3 / sentrygun-server
  ☆15Updated 5 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last month
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• joesecurity / DocBleachShell
  DocBleachShell is the integration of the great DocBleach, https://github.com/docbleach/DocBleach Content Disarm and Reconstruction tool i…
  ☆21Updated 3 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆19Updated 8 years ago
• adulau / threat-intelligence.eu
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆49Updated last month
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• czardoz / hornet
  SSH Multipot
  ☆23Updated 7 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated last year
• corelan / dnshjmon
  dnshjmon is a free tool to monitor public DNS records and report hijacks
  ☆91Updated 11 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆81Updated 5 years ago
• singe / container-breakouts
  Testing/collecting some container breakouts
  ☆94Updated 6 years ago
• ciscocsirt / dhp
  Simple Docker Honeypot server emulating small snippets of the Docker HTTP API
  ☆31Updated 5 years ago
• gen0cide / laforge
  Competition Infrastructure Management
  ☆87Updated 3 years ago
• dutchcoders / lootbox
  Lootbox downloads open directories shared on Twitter.
  ☆34Updated 4 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆44Updated 8 years ago
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated last year
• magisterquis / vnclowpot
  Low-interaction VNC honeypot with a static challenge.
  ☆22Updated 6 years ago
• kulinacs / cowrie-attack
  Mapping the ATT&CK matrix in a Cowrie honeypot
  ☆16Updated 7 years ago
• dutchcoders / troje
  Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.
  ☆44Updated 11 years ago