Alternatives and similar repositories for pyintelowl

Users that are interested in pyintelowl are comparing it to the libraries listed below

• ninoseki / uzen
  Website crawler with YARA detection
  ☆90Updated 2 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆56Updated 3 years ago
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆91Updated 11 months ago
• corelight / threat-hunting-guide
  ☆56Updated 3 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆68Updated 2 years ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆70Updated last year
• passivedns / passivedns
  Web Application for domain name monitoring / alerting
  ☆65Updated last year
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆50Updated this week
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆161Updated this week
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆103Updated 6 months ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆91Updated last month
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated 2 years ago
• fireeye / HXTool
  HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…
  ☆84Updated last year
• P3t3rp4rk3r / Threat_Intelligence
  Threat-Intelligence Feeds & Tools & Frameworks
  ☆222Updated last year
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆49Updated 3 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆62Updated 7 months ago
• newcontext-oss / opencti-terraform
  Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP
  ☆33Updated last year
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆36Updated 11 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆87Updated 5 years ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆58Updated 4 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆79Updated 2 months ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆148Updated 2 years ago
• mnemonic-no / grafeo
  Open platform for modelling, collection and exchange of knowledge
  ☆163Updated 8 months ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆79Updated 3 years ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆131Updated last year
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆74Updated 3 years ago