Alternatives and similar repositories for ioc-fanger

Users that are interested in ioc-fanger are comparing it to the libraries listed below

• fhightower / ioc-finder

  View on GitHub
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆179Nov 16, 2023Updated 2 years ago
• CiviCERT / suspicious-email-submitter

  View on GitHub
  The Suspicious Email Submitter is a discontinued browser extension (Chrome, Chromium, Firefox) for the easy submission of suspicious emai…
  ☆15Mar 6, 2023Updated 2 years ago
• S03D4-164 / Hiryu

  View on GitHub
  IOC Management and Visualization Tool
  ☆48Dec 8, 2022Updated 3 years ago
• InQuest / iocextract

  View on GitHub
  Defanged Indicator of Compromise (IOC) Extractor.
  ☆564Aug 28, 2024Updated last year
• karttoon / iocs

  View on GitHub
  IoC's, PCRE's, YARA's etc
  ☆24Mar 25, 2025Updated 10 months ago
• thnyheim / misp2bro

  View on GitHub
  Python script that gets IOC from MISP and converts it into BRO intel files.
  ☆13Apr 17, 2016Updated 9 years ago
• MISP / misp-cloud

  View on GitHub
  misp-cloud - Cloud-ready images of MISP
  ☆74Aug 24, 2022Updated 3 years ago
• anl-cyberscience / LQMToolset

  View on GitHub
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Oct 24, 2018Updated 7 years ago
• cisagov / flare-misp-service

  View on GitHub
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Jun 5, 2024Updated last year
• gcrahay / otx_misp

  View on GitHub
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Sep 29, 2021Updated 4 years ago
• UTSA-cyber / sceadan

  View on GitHub
  Systematic Classification Engine for Advanced Data ANalysis
  ☆22Mar 6, 2017Updated 8 years ago
• COSSAS / sacti

  View on GitHub
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Oct 24, 2022Updated 3 years ago
• PaloAltoNetworks / misp-to-autofocus

  View on GitHub
  Script for pulling events from a MISP database and converting them to Autofocus queries.
  ☆13Dec 28, 2015Updated 10 years ago
• PUNCH-Cyber / stoq

  View on GitHub
  An open source framework for enterprise level automated analysis.
  ☆393Jun 27, 2022Updated 3 years ago
• CIRCL / yara-validator

  View on GitHub
  Validates yara rules and tries to repair the broken ones.
  ☆41Sep 5, 2020Updated 5 years ago
• DevoInc / sightingdb

  View on GitHub
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆17Apr 11, 2024Updated last year
• csirt-tooling-org / csirt-tooling-best-practices

  View on GitHub
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Jun 20, 2022Updated 3 years ago
• eCrimeLabs / phish2MISP

  View on GitHub
  Easy way to create a MISP event related to a Phishing page
  ☆17May 31, 2023Updated 2 years ago
• PidgeyL / MISP-Extractor

  View on GitHub
  Extract information from MISP via the API
  ☆16Jul 18, 2016Updated 9 years ago
• 0xrawsec / gene-rules

  View on GitHub
  ☆42Sep 16, 2022Updated 3 years ago
• egaus / malicious_url_analysis

  View on GitHub
  ☆18Jun 8, 2018Updated 7 years ago
• CyCat-project / cycat-taxonomy

  View on GitHub
  CyCAT.org taxonomies
  ☆15May 22, 2021Updated 4 years ago
• tbarabosch / apihash_to_yara

  View on GitHub
  Generates YARA rules to detect malware using API hashing
  ☆17Mar 16, 2021Updated 4 years ago
• ministryofpromise / tlp

  View on GitHub
  threat language parser
  ☆60Apr 20, 2015Updated 10 years ago
• ahoernecke / docker_scumblr

  View on GitHub
  Docker Container for Scumblr (github.com/netflix/scumblr)
  ☆14Jul 13, 2016Updated 9 years ago
• armbues / ioc_parser

  View on GitHub
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Feb 24, 2023Updated 2 years ago
• a4lg / fast-ssdeep-clus

  View on GitHub
  Parallel ssdeep clustering kit
  ☆20Dec 24, 2017Updated 8 years ago
• MISP / misp-takedown

  View on GitHub
  A curses-style interface for automatic takedown notification based on MISP events.
  ☆20Dec 11, 2020Updated 5 years ago
• ntddk / virustream

  View on GitHub
  A script to track malware IOCs with OSINT on Twitter.
  ☆54May 3, 2024Updated last year
• paulpc / nyx

  View on GitHub
  Threat Intelligence distribution
  ☆31Dec 30, 2015Updated 10 years ago
• tsale / BlueSploit

  View on GitHub
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Jan 1, 2020Updated 6 years ago
• cert-se / megatron-java

  View on GitHub
  Megatron - A System for Abuse- and Incident Handling
  ☆45Mar 29, 2017Updated 8 years ago
• hatching / sflock

  View on GitHub
  Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
  ☆85Dec 5, 2023Updated 2 years ago
• eCrimeLabs / MISP2CbR

  View on GitHub
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆20May 25, 2022Updated 3 years ago
• threatsimgpt-AI / ThreatSimGPT

  View on GitHub
  ☆537Updated this week
• daveherrald / scansio-sonar-splunk

  View on GitHub
  Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…
  ☆19Feb 11, 2026Updated last week
• informed-governance-project / NISINP

  View on GitHub
  Incident Notification Platform by @NC3-LU
  ☆11Updated this week
• opensourcesec / Forager

  View on GitHub
  Multithreaded threat Intelligence gathering built with Python3
  ☆177Jan 23, 2018Updated 8 years ago
• sroberts / cacador

  View on GitHub
  Indicator Extractor
  ☆141Jul 14, 2018Updated 7 years ago