Alternatives and similar repositories for ochi

Users that are interested in ochi are comparing it to the libraries listed below

• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆161Updated this week
• certego / BuffaLogs
  BuffaLogs is an Open Source Django App whose main purpose is to detect login anomalies
  ☆58Updated last week
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆244Updated 3 weeks ago
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆340Updated this week
• weslambert / velocistack
  ☆53Updated last year
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆338Updated this week
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆176Updated last week
• OWASP-BLT / BLT
  OWASP BLT - Bug Logging Tools
  ☆257Updated this week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆120Updated 3 weeks ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆48Updated last year
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated this week
• intelowlproject / pyintelowl
  Robust Python SDK and Command Line Client for interacting with IntelOwl's API.
  ☆69Updated 9 months ago
• ail-project / lacus
  Lacus is a capturing system using playwright, as a web service.
  ☆99Updated 3 weeks ago
• activecm / threat-tools
  Tools for simulating threats
  ☆199Updated 2 years ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆100Updated 3 weeks ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆50Updated 7 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆169Updated 2 years ago
• honeynet / riotpot
  the IoT and OT (Operational Technology) Honeypot
  ☆31Updated last year
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆298Updated 11 months ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆114Updated 3 weeks ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆125Updated 2 years ago
• Shuffle / openapi-apps
  Swagger/ OpenAPI specifications for security products and services
  ☆77Updated 3 weeks ago
• NUKIB / misp
  Docker image for MISP
  ☆137Updated this week
• typosquatter / ail-typo-website
  Website for ail-typo-squatting library
  ☆69Updated 3 months ago
• blackstork-io / fabric
  An open-source command-line tool for cybersecurity reporting automation and a configuration language for reusable templates. Reporting-as…
  ☆64Updated 6 months ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆248Updated 9 months ago
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆173Updated 2 weeks ago
• ekristen / cast
  Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux
  ☆131Updated this week
• summved / log-generator
  This tool will be invaluable for: SIEM Testing - Generate realistic multi-source logs Security Training - Reproducible scenarios for educ…
  ☆26Updated this week
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year