Alternatives and similar repositories for GreedyBear

Users that are interested in GreedyBear are comparing it to the libraries listed below

• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆166Updated last year
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆179Updated this week
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆116Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆211Updated 3 months ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆137Updated 7 months ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆114Updated 2 years ago
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆119Updated 2 years ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆108Updated last week
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆83Updated 5 years ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆123Updated last year
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• BushidoUK / CTI-Lexicon
  Dictionary of CTI-related acronyms, terms, and jargon
  ☆144Updated last year
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆161Updated 7 months ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆118Updated 2 years ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆131Updated last year
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆293Updated 5 months ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆163Updated 3 years ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆146Updated 2 years ago
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆265Updated last year
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 3 years ago
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆201Updated 3 months ago
• AndrewRathbun / Awesome-KAPE
  A curated list of KAPE-related resources
  ☆173Updated 5 months ago
• StrangerealIntel / EternalLiberty
  ☆212Updated 4 months ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆104Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated last year
• AbdulRhmanAlfaifi / Fennec
  Artifact collection tool for *nix systems
  ☆211Updated last year
• Errum / IntelArchitectureMap
  Intelligence Architecture Mind Map
  ☆136Updated last year
• korniko98 / pivot-atlas
  ☆96Updated 2 months ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆180Updated 2 years ago