Alternatives and similar repositories for ochi

Users that are interested in ochi are comparing it to the libraries listed below

• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆159Updated last week
• honeynet / riotpot
  the IoT and OT (Operational Technology) Honeypot
  ☆25Updated last year
• certego / BuffaLogs
  BuffaLogs is an Open Source Django App whose main purpose is to detect login anomalies
  ☆47Updated this week
• OWASP-BLT / BLT
  OWASP BLT is a collection of security tools.
  ☆195Updated last week
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆287Updated 6 months ago
• mushorg / glutton
  Generic Low Interaction Honeypot
  ☆282Updated 2 months ago
• stratosphereips / Google-Summer-of-Code
  Core information on Stratosphere's participation on the Google Summer of Code Program
  ☆27Updated last year
• MISP / misp-book
  User guide of MISP
  ☆272Updated 7 months ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆142Updated last week
• Shuffle / shuffle-shared
  A repository used as a Go module to help out with Shuffle development, and to ensure we reuse code structures everywhere.
  ☆13Updated last week
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated 2 years ago
• KC7-Foundation / kc7_data
  Repo of KC7 challenge scenarios
  ☆25Updated last year
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆326Updated 2 weeks ago
• scorelab / OpenMF
  An Open Source Mobile Forensics Investigation Tool for Android Platform
  ☆166Updated 2 years ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆55Updated last week
• cisagov / shareable-soar-workflows
  This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…
  ☆88Updated 4 years ago
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆316Updated last week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆374Updated this week
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆223Updated this week
• CrowdStrike / FDR
  Falcon Data Replicator
  ☆31Updated 4 months ago
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆108Updated last week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆96Updated last week
• weslambert / velocistack
  ☆51Updated last year
• NUKIB / misp
  Docker image for MISP
  ☆132Updated this week
• mark-hallman / plaso_filters
  Scripts to facilitate filtering with Plaso
  ☆126Updated 5 years ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆108Updated 2 weeks ago
• Shuffle / openapi-apps
  Swagger/ OpenAPI specifications for security products and services
  ☆78Updated last week
• bradleyjkemp / sigma-go
  A Go implementation and parser for Sigma rules.
  ☆88Updated 3 months ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆48Updated last week
• SigmaHQ / pySigma-backend-insightidr
  ☆15Updated 10 months ago