Alternatives and similar repositories for labs_campaigns:

Users that are interested in labs_campaigns are comparing it to the libraries listed below

• GreyNoise-Intelligence / api.greynoise.io
  Code + documentation for the public GreyNoise API
  ☆314Updated 3 years ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆533Updated 10 months ago
• ukncsc / lme
  Logging Made Easy
  ☆707Updated last year
• robertdavidgraham / rdpscan
  A quick scanner for the CVE-2019-0708 "BlueKeep" vulnerability.
  ☆900Updated 5 years ago
• Unit221B / Russian
  Russian Keyboard Registry Script
  ☆104Updated 3 years ago
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆345Updated 7 years ago
• spaceraccoon / manuka
  A modular OSINT honeypot for blue teamers
  ☆331Updated last year
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆778Updated 4 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆438Updated last week
• nccgroup / phantap
  Phantom Tap (PhanTap) - an ‘invisible’ network tap aimed at red teams
  ☆594Updated 7 months ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆663Updated last year
• shirosaidev / sharesniffer
  Network share sniffer and auto-mounter for crawling remote file systems
  ☆206Updated 2 years ago
• JPCERTCC / SysmonSearch
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆418Updated last year
• Arno0x / DNSExfiltrator
  Data exfiltration over DNS request covert channel
  ☆855Updated 8 months ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆374Updated this week
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 4 years ago
• nsacyber / Mitigating-Web-Shells
  Guidance for mitigation web shells. #nsacyber
  ☆970Updated last year
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆433Updated 6 months ago
• botherder / kraken
  Cross-platform Yara scanner written in Go
  ☆330Updated last year
• yarox24 / attack_monitor
  Endpoint detection & Malware analysis software
  ☆228Updated 5 years ago
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆151Updated 10 months ago
• mandiant / sunburst_countermeasures
  ☆560Updated last year
• marco-lancini / docker_offensive_elk
  Elasticsearch for Offensive Security
  ☆138Updated 4 years ago
• sa7mon / miniprint
  A medium interaction printer honeypot 🍯
  ☆202Updated last year
• praetorian-inc / purple-team-attack-automation
  Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
  ☆716Updated 4 years ago
• palantir / windows-event-forwarding
  A repository for using windows event forwarding for incident detection and response
  ☆1,235Updated 5 months ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆475Updated 3 years ago
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆393Updated last year
• 0xsha / sweetie-data
  This repo contains logstash of various honeypots
  ☆174Updated 4 years ago
• GossiTheDog / ThreatHunting
  Tools for hunting for threats.
  ☆573Updated 3 months ago