Alternatives and similar repositories for linux-audit:

Users that are interested in linux-audit are comparing it to the libraries listed below

• NVISOsecurity / nviso-cti
  ☆41Updated 9 months ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆53Updated 6 months ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆23Updated this week
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 2 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆38Updated last year
• ezaspy / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Updated last month
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆13Updated last year
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆18Updated 6 months ago
• the2dl / SSDT
  Stupid Simple Detection Testing
  ☆12Updated 10 months ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆22Updated last month
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• corelight / detect-ransomware-filenames
  ☆16Updated 3 weeks ago
• NextronSystems / thunderstorm-collector
  THOR Thunderstorm Collectors
  ☆24Updated 4 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• JPCERTCC / SurfaceAnalysis-on-Cloud
  Surface Analysis System on Cloud
  ☆19Updated last year
• aarju / Kibana_ForensicDashboards
  Dashboards for conducting forensic investigation using windows events in Kibana
  ☆17Updated 5 years ago
• blueteam0ps / det-eng-samples
  This repository contains sample log data that were collected after running adversary simulations in Microsoft 365
  ☆20Updated 3 months ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆24Updated 4 years ago
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• fox-it / citrix-netscaler-triage
  Dissect triage script for Citrix NetScaler devices
  ☆23Updated 6 months ago
• KaanSK / Go-MISPFeedGenerator
  Golang implementation of PyMISP-feedgenerator
  ☆16Updated 2 years ago
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 2 years ago