Alternatives and similar repositories for pyintelowl

Users that are interested in pyintelowl are comparing it to the libraries listed below

• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆57Updated 3 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆68Updated 2 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆51Updated last week
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆103Updated 6 months ago
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆91Updated 3 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• P3t3rp4rk3r / Threat_Intelligence
  Threat-Intelligence Feeds & Tools & Frameworks
  ☆222Updated last year
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆42Updated 2 weeks ago
• mnemonic-no / grafeo
  Open platform for modelling, collection and exchange of knowledge
  ☆164Updated 8 months ago
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆165Updated this week
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆63Updated 8 months ago
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆93Updated last year
• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆179Updated 2 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆162Updated 10 months ago
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆36Updated last year
• newcontext-oss / opencti-terraform
  Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP
  ☆33Updated last year
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆132Updated last year
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 3 weeks ago
• EmergingThreats / threatresearch
  Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation
  ☆82Updated last week
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆50Updated 5 months ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆150Updated 2 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆80Updated 3 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆79Updated last week
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated 2 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆108Updated last year
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆147Updated last month
• Te-k / analyst-scripts
  Scripts to analyze stuff
  ☆146Updated 6 months ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆162Updated 5 years ago